IP Lists
IP lists allow you to create allow and deny rules using IP addresses, IP address ranges, or CIDR blocks. These values in your rules will deny or allow access to your resources. For instructions on selecting or creating IP lists, see the in-application help pop-ups.
Overview of IP Lists
After you define an IP list, you can use it in rulesets to create rules for traffic flows. When you provision the rulesets, the rules allow or deny traffic.
Rules that use IP lists are programmed on one side of the connection only. IP lists can be used as a destination and a source.
Note that Cloud Illumio Cloud does not allow use of '!' or other exclusion methods with IP addresses.
Examples of Different IP List Entries
Single IP
You can create IP lists that use IPv4 or IPv6, and Illumio Cloud will decorate them, but you cannot search for the traffic of an IP list that contains IPv6.
Examples:
127.0.0.1
2001:0db8:0a0b:12f0:0000:0000:0000:0001
CIDR Block
Use a slash to indicate a CIDR Block. You can indicate CIDR Blocks that use IPv4 or IPv6, and Illumio Cloud will decorate them, but you cannot search for the traffic of an IP list that contains a CIDR block.
Examples:
192.168.100.0/24
2620:0:860:2::/64
IP Ranges
Use a hyphen to indicate an IP range. Use cases include when you can see traffic decorated with an IP list that contains a range, but you cannot search for the traffic of an IP list that contains a range.
Example:
10.0.0.0-10.255.255.255
Comments
Use a hash symbol to indicate a line comment.
Example:
23.4.55.6 #Comment Text