NxtFireGuard Logo

Whitelists

A Whitelist is a set of trusted IP addresses or subnets that you want to exclude from blocking. Whitelists can be applied to blocklists, blocklist aggregators, and Traffic Sensors, each with different effects.

Applied to a Blocklist: whitelisted IPs will not be added to the blocklist. Any whitelisted IPs already present in the blocklist will be removed automatically.

Applied to a Blocklist Aggregator: whitelisted IPs are filtered out from the aggregator's response when your firewall polls the URL. The IPs are not removed from the underlying blocklists themselves.

Applied to a Traffic Sensor: the sensor will exclude whitelisted IPs from monitoring entirely and will not send block recommendations for them.

Creating a Whitelist

Creating a whitelist is a five-step process:

  1. Go to Whitelists in the sidebar and click + Create Whitelist.
  2. Step 1 - Whitelist Name: Enter a descriptive name for the whitelist.
  3. Step 2 - Whitelist Entries: Add the IP addresses or subnets you want to whitelist. Click + Add Entry for each one, providing a description and the subnet in CIDR notation (e.g. 192.168.178.0/24). For a single IP address use a /32 mask (e.g. 10.0.0.1/32).
  4. Step 3 - Private Blocklists: Select which blocklists this whitelist should be applied to. Whitelisted IPs will be prevented from being added to the selected blocklists and any already present will be removed.
  5. Step 4 - Blocklist Aggregators: Select which aggregators this whitelist should be applied to. Whitelisted IPs will be filtered out from those aggregators' responses on polling, without affecting the underlying blocklists.
  6. Step 5 - Traffic Sensors: Select which Traffic Sensors this whitelist should be applied to. The selected sensors will exclude whitelisted IPs from monitoring and will not send block recommendations for them. Click Create Whitelist to finish.

Managing Whitelists

Editing a whitelist: click Edit on any whitelist card to update its name, entries, or the blocklists, aggregators, and Traffic Sensors it is applied to.

Deleting a whitelist: click Delete Whitelist inside the Edit panel. Removing a whitelist from a blocklist means previously whitelisted IPs can be blocked again if they are reported in the future.

If you need help, reach out via the contact form.