An IP/CIDR allowlist provides access to selected IP addresses and programs that your network server policy could typically block.
To use these APIs, you need an access token. Only a Primary Admin can generate MyJFrog tokens. For more information, see Generate a Token in MyJFrog.
Related Documentation: Configure the IP/CIDR Allowlist in MyJFrog describes this feature in the MyJFrog portal. The API supports bulk add/delete requests to simplify list management.
The following limitations apply:
Maximum Allowlist Count
The allowlist for a JFrog subscription can contain a maximum of 4500 unique IP/CIDR values.
A single POST or DELETE request can contain up to 2500 unique IP//CIDR values. There is no size limit on GET requests.
Private IPs
The IETF RFC 1918 standard reserves the following IP address ranges for private networks. They are not addressable from the Internet. You cannot add these IP addresses to the allowlist.
10.0.0.0 – 10.255.255.255 (10/8 prefix)
172.16.0.0 – 172.31.255.255 (172.16/12 prefix)
192.168.0.0 – 192.168.255.255 (192.168/16 prefix)