-
Notifications
You must be signed in to change notification settings - Fork 5.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feature: support cidr blocks egress control with --allow-net #9816
Comments
CIDR blocks would require us to resolve hostnames to IP addresses before matching against the net allow list. Possible, but not easy to implement. |
#11509 unfortunately stalled but that means this feature is up for grabs again. |
@bnoordhuis I can grab the issue if it sounds good to you. Will take me some time to familiarize with the codebase |
@lucacasonato @alexanderGalushka This is something I was reading into and potentially looking at making PR for, just making a note before I get off and anyone else wants to pick. There seems to be a resolveDNS API in Deno already which can be used to perform the domain resolution, interface useable to the rest of Deno, not sure, however once I track down the internals those can be used either way. |
currently --allow-net supports only IPs and domains, unfortunately it doesn't support cidr blocks yet
e.g.
The text was updated successfully, but these errors were encountered: