To help safeguard your account, Ziflow supports IP Allowlisting to restrict account access to specified IP addresses. For more information about Ziflow domains, see Add Ziflow to your allowlist.

IP Allowlisting lets your Ziflow administrator create a list of IP addresses that can log in. If a user tries to log in from an unlisted IP, access is denied. Use this feature if your organization handles sensitive information and you want to enforce location-based access controls. 

IP Allowlisting affects only licensed Ziflow users, not guest reviewers.

Available on: Enterprise

Add IPs to your allowlist

1. Log into Ziflow. Select your user avatar and choose Settings > Security > IP Allowlist.
   
   
    
2. Select Add IP Allowlist. The Add IP Allowlist window opens.
   
   
    

3. Enter your IP information.

   CIDR range

   Classless Inter-Domain Routing allows you to define a range of IP addresses using a concise notation. This is useful when setting up IP allowlisting in Ziflow to restrict access to specific IPs or entire IP ranges.  When configuring IP allowlisting in Ziflow, use CIDR ranges to define which IP addresses are permitted to access your account. All other IP addresses will be blocked.   In CIDR notation, an IP address is followed by a forward slash and a number (e.g., /16). The number indicates how many bits of the address are fixed (i.e., part of the network prefix), while the remaining bits can vary. When configuring IP allowlisting in Ziflow, use CIDR ranges to define which IP addresses are permitted to access your account. All other IP addresses will be blocked. Examples: 192.168.0.0/16 This allows all IP addresses from 192.168.0.0 to 192.168.255.255. The /16 means the first 16 bits are fixed (192.168), and the remaining bits define the range. 192.168.0.0/24 This allows IP addresses from 192.168.0.1 to 192.168.0.255—a smaller, more specific range. 10.0.0.0/8 This allows access from 10.0.0.0 to 10.255.255.255, covering the full 10.x.x.x private IP range.

   Description

   Use the Description field to add context or notes for other Ziflow administrators. For example, you might describe the location, team, or purpose associated with the allowlisted IP range (e.g., “Office VPN – New York team” or “Partner access – secure network only”).

   
   Add your IP address first when configuring the IP allowlist in your account. This will ensure that you won't be logged out from Ziflow if you add an IP range that doesn't include your device.
   
   Ziflow will let you know if the record you plan to add covers your IP address.