You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/waf/tools/lists/custom-lists.mdx
+3-15Lines changed: 3 additions & 15 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -55,23 +55,11 @@ For more information and examples, refer to [Use lists in expressions](/waf/tool
55
55
List items in custom lists with IP addresses must be in one of the following formats:
56
56
57
57
- Individual IPv4 addresses
58
+
- Individual IPv6 addresses
58
59
- IPv4 CIDR ranges with a prefix from `/8` to `/32`
59
-
- IPv6 CIDR ranges with a prefix from `/12` to `/64`
60
+
- IPv6 CIDR ranges with a prefix from `/12` to `/128`
60
61
61
-
You can combine individual addresses and CIDR ranges in the same list.
62
-
63
-
:::note
64
-
65
-
To specify an IPv6 address, enter it as a CIDR range with a `/64` prefix, the largest supported prefix for IPv6 CIDR ranges.
66
-
67
-
For example, instead of `2001:db8:6a0b:1a01:d423:43b9:13c5:2e8f`, enter one of the following:
68
-
69
-
-`2001:db8:6a0b:1a01:0000:0000:0000:0000/64`
70
-
-`2001:db8:6a0b:1a01::/64` (using the [double colon notation](https://tools.ietf.org/html/rfc5952#section-4.2))
71
-
72
-
The IPv6 address topology describes the last 64 bits as the host identifier. Matching on a `/128` prefix would identify a specific IPv6 address, but not the host in general. It would be possible for an attacker to change their specific IPv6 address from a single machine.
73
-
74
-
:::
62
+
The same list can contain both individual addresses and CIDR ranges.
75
63
76
64
You can use uppercase or lowercase characters for IPv6 addresses in lists. However, when you save the list, uppercase characters are converted to lowercase.
0 commit comments