This plugin is a port of the plugin BungeeGuard by lucko and functions nearly identically to his version. The aim of the plugin is to verify that the incoming connections to your Spigot (backend) servers are actually coming from your Velocity instance.
Velocity has a neat feature called modern forwarding but that feature isn’t available in server versions below 1.13 putting those who either don’t know how to properly set up firewalls or those who are prone to proxy impersonation attacks at risk of attack. Because of the VelocityGuard system, these attacks are rendered useless or impractical.
Common issues (read this before continuing)
Please don’t confuse VelocityGuard with Velocity’s built in modern forwarding, VelocityGuard is meant to solve a completely different problem
The best way to have VelocityGuard set up is to have your Velocity instance have it’s forwarding mode set to
legacyand have your backend server’s
If you’re using PaperSpigot please do NOT use the
velocity-supportconfiguration entry as it’s not the same thing as VelocityGuard.
On your Velocity proxies
velocityguard-proxy.jarfile to the Velocity
and then proceed to restart the proxy.
pluginsfolder there should be a new folder called
velocityguard. Open the file called
velocityguardfolder and copy down the value of
should be 64 characters long).
On each of your servers
velocityguard-backend.jarfile into your
restart the server.
plugins(or the config directory for the Sponge users)
folder there should be a new folder called
Add the token(s) generated by your proxy(-ies) to the
# Put the allowed authentication tokens in the list below allowed-tokens: - "gpZCEOe9u0p4KKV8Tgf1TxDrE5ZzcOCfs3JunDi82CvRuHQgeCoxKUladkYDTyBb"
Restart the server.
Feel free to contact me on discord at
KuNet#0001 for any feature request or support request. Feature requests can be replied here. Please don’t ask the Velocity Discord for help, this is not an official velocity-made plugin so they cannot offer the same level of support
Direct download links hosted on file sharing websites will not be posted here due to risks such as:
- They could possibly be faked or backdoored
- It may not have the latest version which may contain possible security risks
As VelocityGuard is a security plugin, it’s vital that the downloads are in a maintained, safe and publicly monitored location. As such, the download instructions will be below.
Head over to the
Actions tab at the top of VelocityGuard’s repository and open the latest one with a check mark. From there there should be an
Artifacts section with a link to download the zip file containing the jars.