# TCP-Track

***

Enable automatic whitelisting of legitimate traffic via TCP-Track.

***

### Introduction

TCP Tracking allows you to automatically whitelist legitimate traffic on a selected IP address. The system operates in **sensor mode**, where traffic is continuously analyzed and whitelisted on our DDoS filters — without requiring any manual rules or reconnections.

> **Best Effort:**\
> This feature is provided as a best-effort service. In case of an attack, detection and filtering may take a few seconds.

***

### How It Works

When TCP Tracking is enabled:

1. **Sensor Mode Activation**\
   The selected IP is placed into **sensor mode.**
2. **Real-Time Traffic Analysis**\
   Outgoing TCP traffic is monitored in real time to determine whether the connections are legitimate.
3. **Automatic Whitelisting**\
   If the traffic is classified as legitimate, our system automatically adds the IP address and destinations to the DDoS filters.
4. **Seamless Filtering**\
   If a filter activates due to an attack, the IP will **not be disconnected** or require a reconnection. Already established legitimate flows will remain intact.

***

### Supported Port Ranges

We currently support TCP tracking for the following outbound ports:

* **Minecraft:**\
  `25565–25595` TCP\
  `43595` TCP

> Other ports may be supported upon request. Please contact support for custom use cases.

***

### Requesting Activation

To enable TCP Tracking, please contact our support team and provide the following:

* The **IP address** you want to enable it for
* A brief description of the **use case** (e.g., Minecraft server)

Once we receive your request, our team will activate sensor mode and confirm when tracking is operational.

> **Pricing:**\
> TCP Tracking is a **paid feature** and costs **€10 per month** per IP.