// ZSCALER / NGINX
zscaler · Nginx
Nginx allow/deny config for zscaler. Drop into your server block or http context. 946 CIDRs, refreshed daily.
// nginx_zscaler_allow.conf
# Zscaler IP Ranges # Updated: 2026-07-12 03:18:05 # Source: https://github.com/rezmoss/cloud-provider-ip-addresses # License: https://github.com/rezmoss/cloud-provider-ip-addresses/LICENSE # This file is generated automatically. Do not edit it directly. # Updates daily at 02:00 UTC # To restrict access to only these IPs in nginx, # add the following line to your server block in your nginx configuration file (e.g., /etc/nginx/nginx.conf or /etc/nginx/sites-available/default): # include /path/to/nginx_zscaler_allow.conf; allow 8.25.203.0/24; allow 8.34.34.0/24; allow 8.35.35.0/24; allow 64.62.169.0/24; allow 64.215.22.0/24; allow 70.39.159.0/24; allow 70.40.176.0/23; allow 70.40.178.0/24; allow 87.58.64.0/18; allow 89.18.89.0/24; allow 101.2.192.0/18; allow 104.129.192.0/20; allow 120.29.239.0/24; allow 128.177.125.0/24; allow 128.177.129.0/24; … (133 more lines)
// nginx_zscaler_deny.conf
# Zscaler IP Ranges # Updated: 2026-07-12 03:18:05 # Source: https://github.com/rezmoss/cloud-provider-ip-addresses # License: https://github.com/rezmoss/cloud-provider-ip-addresses/LICENSE # This file is generated automatically. Do not edit it directly. # Updates daily at 02:00 UTC # To deny access from these IPs in nginx, # add the following line to your server block in your nginx configuration file (e.g., /etc/nginx/nginx.conf or /etc/nginx/sites-available/default): # include /path/to/nginx_zscaler_deny.conf; deny 8.25.203.0/24; deny 8.34.34.0/24; deny 8.35.35.0/24; deny 64.62.169.0/24; deny 64.215.22.0/24; deny 70.39.159.0/24; deny 70.40.176.0/23; deny 70.40.178.0/24; deny 87.58.64.0/18; deny 89.18.89.0/24; deny 101.2.192.0/18; deny 104.129.192.0/20; deny 120.29.239.0/24; deny 128.177.125.0/24; deny 128.177.129.0/24; … (133 more lines)