Example: Blocking a CIDR Range

You may have a set of IP ranges (IPv4 or IPv6) that you want to exclude from your environment. You can build a rule to block a CIDR range as follows:

  1. Click (+) on the Rules page to create a new rule set.

  2. Name the rule set and click Rules.

  3. In the Expression box, add the identifiers.ip.isInRange identifier and enter the values that should be restricted. Choose the Outcome and Reason if the conditions of the rule are met.

  4. Click Evaluate, to verify the range. Enter a value inside and outside of the range to test the rule.

  5. Save the rule set.