Censys is a popular internet-wide scanning platform often used by researchers and security professionals to map exposed services. While useful for security awareness, these scans can also draw unwanted attention to your self-hosted apps or homelab services. If you prefer to stay off their radar, SafeLine WAF can help you block these probes at the network edge.
Why Block Censys?
- Reduce exposure: Stops known scanner networks from indexing your services.
- Lower noise: Keeps unnecessary scan traffic out of your logs.
- Better privacy: Some homelab users prefer not to broadcast internal projects.
The Rule in SafeLine
Rule library name: Block Censys
Applies to: SafeLine v7.3.0 and above
Lists:
- Whitelist: None
- Blacklist: 1
Blacklist Rule:
- Name: Censys block
- Match type: Compound condition (OR)
- Networks included:
162.142.125.0/24
167.94.138.0/24
167.94.145.0/24
167.94.146.0/24
167.248.133.0/24
199.45.154.0/24
199.45.155.0/24
2602:80d:1000\:b0cc\:e::/80
2620:96\:e000\:b0cc\:e::/80
How to Deploy
- Log in to your SafeLine WAF dashboard.
- Navigate to Rules > IP Rules.
- Create a new Blacklist rule using Source IP/CIDR.
- Add the networks listed above with an OR condition.
- Apply the policy to your services and save.
Things to Keep in Mind
- Use with caution: These networks are mostly scanners, but false positives are possible.
- Not a security guarantee: Blocking scanners wonβt protect you from targeted attacks. Always patch and harden services.
- Stay updated: IP ranges for scanning platforms can change; review and adjust periodically.
Join the SafeLine Community
If you continue to experience issues, feel free to contact SafeLine support for further assistance.
Top comments (0)