Is it possible to increase the number of ip lines

Is it possible to increase the number of ip lines
We need more than 15,000 ip

“You have used 2 of 10 lists and 9,999 of 10,000 items.”

I think you can just create one more list to accommodate another 5000 IPs?

We have 2 lists of 5000, we need at least 4000 more

I believe it’s capped at 10K entries to maintain performance. If it is possible to have the limit raised, I would guess it’s reserved for Enterprise customers.

Are any of these IPs in the same subnet? If you use CIDR notation, you can enter a prefix length between /8 and /32 for IPv4 or /12 and /64 for IPv6.

Looks like 10k is the hard limit.

https://developers.cloudflare.com/firewall/cf-firewall-rules/rules-lists#entitlements

The number of Rules Lists you can create depends on the Cloudflare plans associated with the zones in your account. Regardless of plan, you can store up to a total of 10,000 items, spread across all of your lists.

For example, if I write 188.170.80.13/24
I get the error
“invalid value for ip at position 0: filters.api.CIDR has host bits set (Code: 10036)”

Yeah, it should be 188.170.80.0/24 - 13 is the host bit.

1 Like

we are being attacked from 188.170.80.13 to 188.170.81.120

If you write like this 188.170.81.0/24, it will block 255 addresses

You can try to use a smaller prefix to match these IP addresses, though you might need more calculations to create a list of IP prefixes that match all the IPs.

You can use the following site to calculate the optimal CIDR notations:
https://account.arin.net/public/cidrCalculator

188.170.80.13 to 188.170.81.120 would be:

188.170.80.13/32
188.170.80.14/31
188.170.80.16/28
188.170.80.32/27
188.170.80.64/26
188.170.80.128/25
188.170.81.0/26
188.170.81.64/27
188.170.81.96/28
188.170.81.112/29
188.170.81.120/32
1 Like

thanks for the service I used, it gave out different values

If the same attacker is using IPs from 188.170.80.13 to 188.170.81.120 then they most likely “own” the entire 188.170.80.0/23 and are just using part of it.

Though do be careful with what IPs you block and make sure to provide a way for people to contact you if they think they’ve been falsely blocked.

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.