Limbo Support
Suspicious joins can be held in Limbo before they touch your backend. Perfect for checking bots, strange connections and risky first joins.
Powerful, lightweight and highly configurable security for Velocity Minecraft networks. Built to stop bots, exploit attempts, plugin-message abuse and crash methods before they hit your backend.
Suspicious joins can be held in Limbo before they touch your backend. Perfect for checking bots, strange connections and risky first joins.
Designed for mixed Java and Bedrock networks. VeloCity Secuirty keeps compatibility while still protecting joins, payloads and player identity.
Compatible with ViaVersion, ViaBackwards and ViaRewind so your network can support more client versions without losing security checks.
if (payload.suspicious()) {
proxy.block(ip);
notify.team("Exploit blocked");
}
Handshake limits and first-join checks.
Payload size and exploit channel protection.
Connection and per-IP rate limiting.
Suspicious channel and packet detection.
During Attack Mode or Lockdown, only a configured number of logins per second can pass through. Extra joins receive a retry message.
Optional code check through chat or /captcha <code>. Disabled by default.
Blocks suspicious resource-pack URLs such as localhost, private IP targets or invalid protocols. Disabled by default.
Blocks extremely long commands or arguments against spam and crash attempts. Enabled by default.
If databases fail to start, safe modules keep running and commands do not crash.
Checks broken config values, regex patterns, limits and protection modes during startup.
/vsecurity lockdown on/off manually enables stricter protection for attack situations.
/vsecurity firewall test <ip> previews firewall commands without executing them.
VeloCity-Security is a powerful, lightweight and highly configurable security plugin for Velocity Minecraft networks.
It helps protect your proxy against bot attacks, suspicious joins, exploit attempts, plugin-message abuse, malicious payloads and common crash methods.
Every important module, limit, permission, kick message and team notification can be configured.
Connections, payloads, logins and suspicious player behavior are checked at the proxy layer before they can reach your game servers.
BLOCK suspicious payload
LIMIT handshake flood
ALLOW trusted player
Recommended: Test the plugin on a test proxy before using it on a live production network.
system.adminAllows usage of /vsecurity commands.
system.teamAllows team security notifications.
vsecurity.iplimit.bypassBypasses the IP limit protection.
$ /vsecurity stats
OK shield active, 38 threats blocked
$ /vsecurity lockdown on
LOCKDOWN stricter attack protection enabled
$ /vsecurity firewall test 192.0.2.10
DRY-RUN firewall command preview only
/vsecurity config reloadReloads the plugin configuration./vsecurity statsShows current security statistics./vsecurity add temporary <ip>Adds an IP address to the temporary block list./vsecurity add always <ip>Adds an IP address to the permanent block list./vsecurity remove temporary <ip>Removes an IP address from the temporary block list./vsecurity remove always <ip>Removes an IP address from the permanent block list./vsecurity reset temporaryClears all temporary IP blocks and removes their firewall rules./vsecurity reset alwaysClears all permanent IP blocks and removes their firewall rules./vsecurity lockdown on/offManually enables or disables stricter lockdown protection./vsecurity firewall test <ip>Shows firewall commands as a dry-run without executing them.Make the plugin strict for attack waves or softer for normal player traffic. Your network, your rules.