Product Security Hardening
Unrelated Networks to block
These networks scan the internet and are not exactly a threat but due to the scanning, it reveals vulnerability information within the infrastructure.
Blocking Internet Measurement (DriftNet)
ASN211298
IPv4 Scanning IPs
IPv6 IPs
Block Censys
AS398705
AS398324
AS398722
Block IONOS
AS8560
Block Internet Archive (Wayback Machine)
AS7941
Block North Korea
AS13127
Block Yandex (Russian Search Engine)
AS13238
Block M247 Europe
AS9009
Cloudflare
GeoBlocking with Whitelist expression - This rule blocks incoming traffic from a specified list of countries and the Tor network while allowing traffic from any IP addresses included in a predefined whitelist (e.g., trusted clients or partners).
Bulk IP CSV uploads require a CSV in IP, Description
Format. Here is a python script to use for creating the bulk upload csv:
cfbulkip.py
Last updated