分享阿里云 ESA 回源 IP 段
因为阿里云的源站防护功能,在免费版用不了,而我需要在源站设置访问白名单,于是就需要找一份阿里云 ESA 回源 IP 段列表。
Cloudflare和EdgeOne都是公开回源IP段的,同样是属于CDN的ESA居然不公开,有点离谱,不过看样子应该是想作为增值服务,付费才能开源站保护()
好巧不巧,这段时间基础版ESA都可以免费领取一个月,而基础版ESA是可以开启源站保护的,所以自然也就拿到了回源的IP段列表。虽然文档说这是收敛后的IP段列表,但是得到的回源IP估摸着大概有1700+个,而且我和群友交叉验证过,得到的IP段是一模一样的。应该是收敛之前的完整IP段。估计可能的原因是我没有添加任何要加速的子域名,直接先开源站保护,导致返回了全量的IP段——这是好事啊!连统计和汇总都省了。(后记补充:打脸了,后面进一步测试后发现,免费版和基础版回源IP段是分开的,不用白费力气了)
现在我就分享出来,给需要的站长参考。IP段可以用来设置源服务器的访问白名单,避免源服务器被扫描。具体如何使用,懂得人自然会懂,如果不知道的话,可以看一下这篇文章:
绕过黑洞!利用VPC内网互通低成本实现DDoS攻击下网站高可用中的代理服务器安全组设置(可选)这一小节。
请注意,文中获取到的IP段很有可能是有时效性的,不保证未来可用!获取的时间为2025年12月18日,如果时间过去的太久,需要使用请先验证!
测试后补充:免费版和基础版回源IP段是分开的,所以想白嫖源站保护是不太可能的,后续也不要白费力气了。这篇文章就当作教训挂在这里了。
全部 IPv4 回源 IP 段
39.96.151.128/25
111.13.222.128/25
111.206.190.0/25
49.7.41.128/25
111.7.71.0/25
117.49.24.96/27
183.131.47.64/26
117.49.26.96/27
27.128.150.128/25
222.138.192.0/25
111.63.174.128/25
123.149.174.0/25
39.173.24.0/26
117.49.24.128/26
117.49.173.192/26
117.49.26.128/26
101.69.215.128/26
163.181.67.128/25
175.4.42.0/25
183.215.56.0/25
116.163.14.128/25
157.255.137.128/25
117.49.181.0/25
183.60.170.128/25
120.241.64.0/25
8.147.217.48/29
8.147.217.32/28
114.250.55.64/26
106.38.245.128/26
221.179.212.0/26
8.147.217.0/27
163.181.122.128/25
36.156.79.0/25
183.136.179.64/26
120.222.205.128/25
60.188.139.0/26
163.181.15.128/25
120.241.14.64/26
112.90.140.64/26
120.241.13.128/26
163.181.89.128/25
61.241.9.128/25
124.95.162.128/25
222.141.35.128/25
42.96.222.128/25
117.49.152.64/26
106.38.189.128/25
117.49.153.0/25
39.156.171.128/25
111.7.83.128/25
219.144.87.0/25
117.49.3.128/26
8.152.80.0/25
114.232.93.0/25
150.139.146.128/25
123.126.111.128/25
140.249.255.128/25
39.173.42.128/25
59.36.91.0/26
120.222.200.128/25
111.19.142.0/25
113.201.176.0/25
122.193.247.0/25
183.36.45.64/26
139.129.78.0/25
183.240.195.128/25
117.49.179.0/25
36.99.21.0/25
27.221.6.128/25
42.248.141.128/25
124.160.142.128/26
112.17.15.224/27
115.238.4.128/25
8.147.211.128/25
101.67.60.128/25
58.251.89.64/26
120.201.61.128/25
112.13.103.192/27
163.181.32.128/25
118.31.144.0/25
47.120.92.128/25
49.7.244.0/25
111.202.96.128/25
121.199.80.128/25
111.13.210.192/26
119.167.177.128/25
121.14.100.0/25
111.13.221.128/26
163.181.83.128/25
101.71.18.192/26
14.17.67.0/25
120.233.124.0/25
117.49.5.128/25
157.255.140.128/25
123.184.196.128/25
117.49.78.128/25
36.131.160.128/25
218.60.99.128/25
112.124.132.128/25
39.175.133.0/25
60.188.15.0/25
101.71.19.0/25
180.178.229.128/25
117.49.183.128/25
112.48.243.128/25
36.250.255.128/25
163.181.132.128/25
163.181.241.128/25
47.95.190.128/25
123.138.130.128/25
112.46.42.0/25
1.82.252.0/25
117.49.229.192/26
163.181.146.128/25
101.67.10.0/25
111.0.39.0/25
183.131.180.0/25
117.49.105.128/25
140.207.206.128/25
117.184.35.0/25
183.192.185.128/25
117.185.225.0/25
47.123.117.0/25
180.163.72.0/24
47.117.201.128/25
8.132.38.0/25
112.65.34.0/25
140.207.192.128/25
101.226.38.0/25
155.102.129.128/25
155.102.143.128/25
163.181.79.128/25
60.188.120.128/25
101.66.250.0/25
112.12.67.128/25
60.188.87.0/24
223.95.32.0/24
123.157.24.0/24
8.154.82.128/25
124.160.169.128/25
115.227.45.0/25
117.148.170.0/25
111.62.167.0/25
123.126.114.128/25
39.101.98.0/25
163.181.223.128/25
101.206.246.128/25
118.123.166.128/25
223.85.58.128/25
117.49.175.0/24
163.181.34.128/25
155.102.202.128/25
155.102.210.128/25
39.173.41.128/26
47.121.109.0/25
220.181.117.0/26
220.181.118.0/25
39.156.236.0/25
121.89.63.0/25
106.38.186.128/25
114.250.56.0/25
221.195.236.0/25全球 IPv4 回源 IP 段(不含中国内地)
163.181.67.128/25
163.181.122.128/25
163.181.15.128/25
163.181.89.128/25
163.181.32.128/25
163.181.83.128/25
163.181.132.128/25
163.181.241.128/25
163.181.146.128/25
155.102.129.128/25
155.102.143.128/25
163.181.79.128/25
163.181.223.128/25
163.181.34.128/25
155.102.202.128/25
155.102.210.128/25中国内地 IPv4 回源 IP 段
39.96.151.128/25
111.13.222.128/25
111.206.190.0/25
49.7.41.128/25
111.7.71.0/25
117.49.24.96/27
183.131.47.64/26
117.49.26.96/27
27.128.150.128/25
222.138.192.0/25
111.63.174.128/25
123.149.174.0/25
39.173.24.0/26
117.49.24.128/26
117.49.173.192/26
117.49.26.128/26
101.69.215.128/26
175.4.42.0/25
183.215.56.0/25
116.163.14.128/25
157.255.137.128/25
117.49.181.0/25
183.60.170.128/25
120.241.64.0/25
8.147.217.48/29
8.147.217.32/28
114.250.55.64/26
106.38.245.128/26
221.179.212.0/26
8.147.217.0/27
36.156.79.0/25
183.136.179.64/26
120.222.205.128/25
60.188.139.0/26
120.241.14.64/26
112.90.140.64/26
120.241.13.128/26
61.241.9.128/25
124.95.162.128/25
222.141.35.128/25
42.96.222.128/25
117.49.152.64/26
106.38.189.128/25
117.49.153.0/25
39.156.171.128/25
111.7.83.128/25
219.144.87.0/25
117.49.3.128/26
8.152.80.0/25
114.232.93.0/25
150.139.146.128/25
123.126.111.128/25
140.249.255.128/25
39.173.42.128/25
59.36.91.0/26
120.222.200.128/25
111.19.142.0/25
113.201.176.0/25
122.193.247.0/25
183.36.45.64/26
139.129.78.0/25
183.240.195.128/25
117.49.179.0/25
36.99.21.0/25
27.221.6.128/25
42.248.141.128/25
124.160.142.128/26
112.17.15.224/27
115.238.4.128/25
8.147.211.128/25
101.67.60.128/25
58.251.89.64/26
120.201.61.128/25
112.13.103.192/27
118.31.144.0/25
47.120.92.128/25
49.7.244.0/25
111.202.96.128/25
121.199.80.128/25
111.13.210.192/26
119.167.177.128/25
121.14.100.0/25
111.13.221.128/26
101.71.18.192/26
14.17.67.0/25
120.233.124.0/25
117.49.5.128/25
157.255.140.128/25
123.184.196.128/25
117.49.78.128/25
36.131.160.128/25
218.60.99.128/25
112.124.132.128/25
39.175.133.0/25
60.188.15.0/25
101.71.19.0/25
180.178.229.128/25
117.49.183.128/25
112.48.243.128/25
36.250.255.128/25
47.95.190.128/25
123.138.130.128/25
112.46.42.0/25
1.82.252.0/25
117.49.229.192/26
101.67.10.0/25
111.0.39.0/25
183.131.180.0/25
117.49.105.128/25
140.207.206.128/25
117.184.35.0/25
183.192.185.128/25
117.185.225.0/25
47.123.117.0/25
180.163.72.0/24
47.117.201.128/25
8.132.38.0/25
112.65.34.0/25
140.207.192.128/25
101.226.38.0/25
60.188.120.128/25
101.66.250.0/25
112.12.67.128/25
60.188.87.0/24
223.95.32.0/24
123.157.24.0/24
8.154.82.128/25
124.160.169.128/25
115.227.45.0/25
117.148.170.0/25
111.62.167.0/25
123.126.114.128/25
39.101.98.0/25
101.206.246.128/25
118.123.166.128/25
223.85.58.128/25
117.49.175.0/24
39.173.41.128/26
47.121.109.0/25
220.181.117.0/26
220.181.118.0/25
39.156.236.0/25
121.89.63.0/25
106.38.186.128/25
114.250.56.0/25
221.195.236.0/25全部 IPv6 回源 IP 段
虽然可能不太用得上,因为有一些VPS/云服务器本身就不支持IPv6,或者是服务器/安全组不支持设置IPv6规则。
不过还是列出来吧。
2409:8c04:1110:2::/64
2408:8722:1900::/64
2408:871a:7000:fff6::/64
240e:b1:c803::/64
2409:8c28:88f1:410::/64
240e:f7:a061:8001::/64
240e:93d:1:a::/64
2409:8c44:1b00:300::/64
2404:2280:1d1::/64
2409:8c50:da00:127::/64
2408:8752:800:2::/64
240e:968:7001:3::/64
2408:8756:d0fe:3::/64
2409:8c54:1841:200a::/64
240e:97d:10:1714::/64
2408:8706:3:1008::/64
2408:400a:1010:12::/64
2409:8c00:8412:1008::/64
240e:904:2c01:100c::/64
2409:8c54:1031:4006::/64
2408:400e:1001:b::/64
2408:8722:1010:2::/64
2408:8742:c381:1013::/64
2404:2280:1d4::/64
2409:8c28:d05:1010::/64
240e:979:9503:c1::/64
240e:945:3:200b::/64
240e:904:2c01:101f::/64
240e:945:3:200e::/64
2409:8c14:e08:1201::/64
2408:4003:1:b::/64
2404:2280:1c5::/64
2408:873c:7814:82::/64
240e:f7:8013:f013::/64
2409:8c44:1b00:102::/64
2404:2280:105::/64
240e:90c:2000:703::/64
2408:8706:3:101c::/64
2404:2280:1c3::/64
240e:f7:8013:f010::/64
2409:8c70:3a00:300::/64
240e:93d:1:2::/64
2408:872f:20:c::/64
240e:954:0:102::/64
240e:904:2c01:1020::/64
2409:8c28:d05:1013::/64
2408:4005:1010:1e::/64
2409:8c00:8412:101b::/64
2408:400e:1001:e::/64
2408:4005:1010:16::/64
2408:8742:c381:1010::/64
2409:8c3c:a01:200e::/64
2408:8719:2201:200e::/64
240e:97c:404c:4006::/64
2408:400a:1010:22::/64
2409:8c3c:a01:200b::/64
2409:8c00:8412:101c::/64
2408:8773:8000:109::/64
2404:2280:198::/64
2408:400a:1010:21::/64
2408:8756:2cfa:4003::/64
2409:8c20:5a63:3::/64
2408:8719:2201:200b::/64
2408:8706:3:101b::/64
240e:97d:10:1300::/64
2408:8756:d0fd:f001::/64
2409:8c54:1841:5::/64
2409:8c28:d05:1011::/64
2408:4005:1010:1c::/64
2408:8742:c381:1011::/64
240e:f7:8013:f011::/64
2408:8748:c110:59::/64
2409:8c34:4400:1000::/64
2401:d920:0:60::/64
2404:2280:1d6::/64
2404:2280:17c::/64
240e:97c:400c:2102::/64
2408:4003:1:16::/64
2408:8756:2cff:d102::/64
2409:8c54:1004:1102::/64
2408:8740:61ff:121::/64
2404:2280:1da::/64
240e:f7:8e00:42b::/64
2409:8c28:203:203::/64
2408:8740:c3fc:107::/64
2409:801e:300d:f007::/64
2408:4002:1:1a::/64
2409:8c1e:8f91:1012::/64
240e:96c:202:1011::/64
2408:870c:41:1012::/64
2408:4002:1:19::/64
2408:870c:41:1011::/64
240e:96c:202:1012::/64
2408:400a:1010:1d::/64
2409:8c70:3a04:3001::/64
240e:954:0:1001::/64
2408:8770:1:3001::/64
2404:2280:209::/64
2404:2280:18a::/64
240e:f7:e000:a03::/64
240e:f7:e000:a00::/64
2408:8740:41ff:2::/64
2408:8740:41ff:a::/64
2409:8c28:6cd0:e::/64
2409:8c28:6cd0:f::/64
2409:8c04:1006:2013::/64
2408:400a:1010:25::/64
240e:904:2c01:1004::/64
2408:8706:3:1017::/64
2404:2280:14f::/64
2408:8766:1:b::/64
2409:8c62:e10:44::/64
240e:974:e200:4501::/64
2404:2280:106::/64
2404:2280:21b::/64
2404:2280:21e::/64
240e:904:2c01:101c::/64
2408:8706:3:1018::/64
2409:8c00:8411:600a::/64
2408:400a:1010:1e::/64全球 IPv6 回源 IP 段(不含中国内地)
2404:2280:1d1::/64
2404:2280:1d4::/64
2404:2280:1c5::/64
2404:2280:105::/64
2404:2280:1c3::/64
2404:2280:198::/64
2404:2280:1d6::/64
2404:2280:17c::/64
2404:2280:1da::/64
2404:2280:209::/64
2404:2280:18a::/64
2404:2280:14f::/64
2404:2280:106::/64
2404:2280:21b::/64
2404:2280:21e::/64中国内地 IPv6 回源 IP 段
2409:8c04:1110:2::/64
2408:8722:1900::/64
2408:871a:7000:fff6::/64
240e:b1:c803::/64
2409:8c28:88f1:410::/64
240e:f7:a061:8001::/64
240e:93d:1:a::/64
2409:8c44:1b00:300::/64
2409:8c50:da00:127::/64
2408:8752:800:2::/64
240e:968:7001:3::/64
2408:8756:d0fe:3::/64
2409:8c54:1841:200a::/64
240e:97d:10:1714::/64
2408:8706:3:1008::/64
2408:400a:1010:12::/64
2409:8c00:8412:1008::/64
240e:904:2c01:100c::/64
2409:8c54:1031:4006::/64
2408:400e:1001:b::/64
2408:8722:1010:2::/64
2408:8742:c381:1013::/64
2409:8c28:d05:1010::/64
240e:979:9503:c1::/64
240e:945:3:200b::/64
240e:904:2c01:101f::/64
240e:945:3:200e::/64
2409:8c14:e08:1201::/64
2408:4003:1:b::/64
2408:873c:7814:82::/64
240e:f7:8013:f013::/64
2409:8c44:1b00:102::/64
240e:90c:2000:703::/64
2408:8706:3:101c::/64
240e:f7:8013:f010::/64
2409:8c70:3a00:300::/64
240e:93d:1:2::/64
2408:872f:20:c::/64
240e:954:0:102::/64
240e:904:2c01:1020::/64
2409:8c28:d05:1013::/64
2408:4005:1010:1e::/64
2409:8c00:8412:101b::/64
2408:400e:1001:e::/64
2408:4005:1010:16::/64
2408:8742:c381:1010::/64
2409:8c3c:a01:200e::/64
2408:8719:2201:200e::/64
240e:97c:404c:4006::/64
2408:400a:1010:22::/64
2409:8c3c:a01:200b::/64
2409:8c00:8412:101c::/64
2408:8773:8000:109::/64
2408:400a:1010:21::/64
2408:8756:2cfa:4003::/64
2409:8c20:5a63:3::/64
2408:8719:2201:200b::/64
2408:8706:3:101b::/64
240e:97d:10:1300::/64
2408:8756:d0fd:f001::/64
2409:8c54:1841:5::/64
2409:8c28:d05:1011::/64
2408:4005:1010:1c::/64
2408:8742:c381:1011::/64
240e:f7:8013:f011::/64
2408:8748:c110:59::/64
2409:8c34:4400:1000::/64
2401:d920:0:60::/64
240e:97c:400c:2102::/64
2408:4003:1:16::/64
2408:8756:2cff:d102::/64
2409:8c54:1004:1102::/64
2408:8740:61ff:121::/64
240e:f7:8e00:42b::/64
2409:8c28:203:203::/64
2408:8740:c3fc:107::/64
2409:801e:300d:f007::/64
2408:4002:1:1a::/64
2409:8c1e:8f91:1012::/64
240e:96c:202:1011::/64
2408:870c:41:1012::/64
2408:4002:1:19::/64
2408:870c:41:1011::/64
240e:96c:202:1012::/64
2408:400a:1010:1d::/64
2409:8c70:3a04:3001::/64
240e:954:0:1001::/64
2408:8770:1:3001::/64
240e:f7:e000:a03::/64
240e:f7:e000:a00::/64
2408:8740:41ff:2::/64
2408:8740:41ff:a::/64
2409:8c28:6cd0:e::/64
2409:8c28:6cd0:f::/64
2409:8c04:1006:2013::/64
2408:400a:1010:25::/64
240e:904:2c01:1004::/64
2408:8706:3:1017::/64
2408:8766:1:b::/64
2409:8c62:e10:44::/64
240e:974:e200:4501::/64
240e:904:2c01:101c::/64
2408:8706:3:1018::/64
2409:8c00:8411:600a::/64
2408:400a:1010:1e::/64后记补充
后面经过我的测试免费套餐似乎不遵循以上IP段列表,把上面的IP段列入白名单,仍然会导致回源522错误。
经过初步的测试,我发现对于我的网站来说,国内访问进行回源的IP段是163.181.78.0/24这整个C段。
而对于国外的访问情况,则更混乱和复杂,涉及多个IP段,而且随机性较强,较难整理。
看起来阿里云还是精明的很的,生怕你能稳定得到回源IP段,不花钱买基础版,故意把付费的域名设置了专门的回源IP段,然后免费版是另外的段,而且国外回源部分IP变动非常大。
所以,还是老老实实用腾讯的EdegOne吧,或者Cloudflare,因为他们公开了回源IP段。
要么就改成高位不常见端口,隐藏好网站证书等可以识别身份的信息。
