What are the IP ranges of Apple's privacy protection proxies?

networking privacy proxy apple

When Apple users allow the settings

  • Maintain General Location allows sites to show you localized content in Safari, while your IP address stays hidden
  • Use Country and Time Zone uses a broader location for your IP address, still within your country and time zone

Apple currently publishes the IP-address ranges they use (for the purpose of populating Geo-IP databases) on their API here:

https://mask-api.icloud.com/egress-ip-ranges.csv

(Source: https://developer.apple.com/support/prepare-your-network-for-icloud-private-relay)

To prevent users in your network from using Apple's privacy protection proxies Apple does not publish the IP-address ranges in use (as far as I know) and instead they recommend:

The fastest and most reliable way to alert users is to return either a "no error no answer" response or an NXDOMAIN response from your network’s DNS resolver, preventing DNS resolution for the following hostnames used by Private Relay traffic.

and block in your DNS

  • mask.icloud.com
  • mask-h2.icloud.com

Related

The predicate nominative and the predicate adjective is to subjective complements as the ___ and the ___ is to objective complements
Non verbal predicates in English
How to tell the difference between predicate adjectives and action verbs
Can adjectives be placed in front of verbs, e.g. “The duck was busy diving for food”?
Is 'white' an adverb in "the lamp will flash white"?
Describing disdain on someone's face
The requirement of a period succeeding direct quotes [duplicate]
Correct use of "rid of"
how to say recharging the battery and account
A digger or an academic
Why is "sad" not a verb? [closed]
What's the word for confusing *two* things for one another?