Skip to main content

Advanced IP Configuration

The IP Settings page provides granular control over the network perimeter of your Dataforest IP. You can define default traffic actions, block entire countries or networks, and manage sophisticated IP whitelists and blacklists.
Reading TimeDifficultyLast Updated
5 minutesIntermediateJanuary 2026

Quick Navigation

SectionWhat You’ll Learn
Default ActionManaging unmatched traffic
ASN BlockingRestricting specific networks
Country BlockingGeo-fencing your service
IP ListsAdvanced CIDR Whitelisting & Blacklisting

Default Action

The Default Action defines how the firewall treats traffic that does not match any of your Custom Filtering Rules.
  • FILTER - Apply filtering rules: (Recommended) Pass the traffic through the Dataforest mitigation engine to scrub for threats.
  • DROP - Drop all traffic: Block all traffic by default. This creates a “Default Deny” environment where only traffic explicitly allowed by your custom rules can pass.

Testing Mode

If you need to bypass filtering for temporary troubleshooting, ensure you have an explicit “Allow” rule in your Custom Filtering Rules rather than using a global drop.

ASN Blocking

ASN (Autonomous System Number) blocking allows you to block or allow traffic from entire internet service providers (ISPs), data centers, or VPN networks.
  1. Select Blacklist (to block) or Whitelist (to exclusively allow).
  2. Enter the ASN Numbers separated by commas in the input field that appears.
    • Example: 15169, 16509, 8075 (Google, Amazon, Microsoft).

Country Blocking

Country Blocking (Geo-blocking) allows you to restrict traffic based on the geographic origin (ISO-2 code) of the IP address.
  1. Select Blacklist or Whitelist.
  2. Enter the Country Codes separated by commas (Maximum of 20).
    • Example: US, GB, DE, FR, CN.

Localized Gaming

If your server is intended for a specific region (e.g., Europe), whitelisting only European country codes can significantly reduce the attack surface from botnets located in other regions.

IP Lists

IP Lists are containers used to manage specific IP addresses or CIDR ranges. Unlike global blocking, these lists allow for individual entry management with specific actions.

1. Creating a List

Click the Create List button and enter a descriptive List Name (e.g., “Staff Whitelist”).

2. Managing Entries

To add IP ranges to your list, you must click the View Entries button next to the list in the table. This opens the entry management view where you can:
  1. Click Add Entry.
  2. CIDR Range: Enter the IP or network range (e.g., 1.2.3.4/32 for a single IP).
  3. Action: Select Whitelist (always allow) or Blacklist (always block).

Support Channels

If you accidentally block yourself or need help identifying an ASN, please contact our support team:

First Month Discount

Use code KB20 at checkout to get 20% off your first month of hosting!
Last Updated: January 2026 | Need Help? Contact our 24/7 support team!