IP Allowlist
Exclude known-good IPs from triggering alerts and mitigation. Manage via Dashboard → Firewall.
Scope
| Scope | Applies To | Use Case |
|---|---|---|
| Node | Single node | Load balancer health checks, node-specific partners. |
| Workspace | All nodes | Monitoring servers, CDN ranges, global partners. |
How It Works
Allowlisted IPs are excluded from source IP analysis. Traffic still counts toward PPS/BPS metrics (for accurate bandwidth reporting), but those IPs are not flagged as attackers or included in mitigation rules.
Allowlisting does not prevent volumetric detection. If non-allowlisted traffic exceeds thresholds, incidents will still open.
API
GET/api/dash/allowlist.php?node_id={id}
POST/api/dash/allowlist.php
Actions: add (ip_address, label, scope, node_id) and remove (id). Requires admin role.
Common Use Cases
- Monitoring systems (Zabbix, Nagios, UptimeRobot)
- CDN edge servers (Cloudflare, Fastly, Akamai)
- Partner API integrations
- Internal load balancers
- Backup and replication traffic
ESC