-
Notifications
You must be signed in to change notification settings - Fork 643
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Feature]: Publish NuGet Public IP addresses/CIDRs for whitelisting #10085
Comments
Hey @skirk-mpr, apologies for the delay. The set of IPs used for NuGet.org are not fixed. In fact, there is not a published list of IP ranges that we maintain. This is because NuGet.org has a variety of cloud infrastructure dependencies and these internally have many different IP ranges. To give a sample of why this is a hard problem for us, I'll list some dependencies of ours (easily discoverable via some simple DNS queries):
I'm sorry that I do not have a good answer for you. If possible, could you allow-list Here is Visual Studio document aligned this my suggestion: See the row for |
Related Problem
I am using AWS CodeBuild to build a .NET 8 project which relies on some public NuGet packages. I'd like to lock down the Security Group on my CodeBuild project to ONLY allow outbound HTTPS/443 traffic to NuGet, since that is the only necessary internet bound communications that is needed.
Security Groups require whitelisting by CIDR blocks so I am looking for a place where I can find the NuGet's public CIDR blocks for whitelisting.
The Elevator Pitch
Make publicly available the CIDR blocks of that would be hit when restoring public packages from nuget, so clients can implement least-privledge on network infrastructure.
Additional Context and Details
Originally posted here: https://stackoverflow.com/questions/78804804/nuget-public-ip-addresses-for-whitelisting
The text was updated successfully, but these errors were encountered: