Once in a while we need either block Entire Countries from Cloud App Security or specific IP addresses.
We do so from:
See examples below:
These are the IP's we get from the Alert.
162.158.106.208
162.158.106.40
172.70.143.117
81.28.162.123
108.162.226.78
162.158.106.0/24
172.70.143.0/24
81.28.162.0/24
108.162.226.0/24
We usually set to /24. We can't do higher than that because then the range would be broader and we may block good IPs.
In example above, the bolded one were merged in to one subnet because the first 3 octects are the same. In other words
162.158.106.0/24 will cover the range for the first 2 bolded IP's.
IF IP block, click on the + Symbol on the right, and then paste the subnet.
Click on Add
And then Save
For Country blocks, click on Blocked Countries, select Country and Click on Save
Thanks,
Audel