I use an OVH VPS as a VPN for DDoS Protection. While testing using UDP for the client > server tunnel, i noticed that when an attack triggers OVH's VAC mitigation (cannot be disabled), the traffic between the server and client is disrupted. Meaning OVH's VAC system was treating my client's UDP traffic as an attacker and blocking it. I know this is the issue because of a post from a different OVH customer on the OVH website.
Keeping that in mind, i switched the tunnel to TCP. But now, when the client connects to a game, i see he is using UDP to connect to the actual game. As predicted, launching a load test (simulated DDoS attack) on the server, witch disconnected my client from the game but not the actual VPN server.
TL;DR: Need to make my OpenVPN server use ONLY TCP for gaming connections, DNS seems okay. Although my client's tunnel is established in TCP, the server connects to the game through UDP. How do i make the server only use TCP in gaming connections?
Edit: Maybe an iptables rule to reject forwarded UDP traffic or encourage TCP?