The whitelist in APM Resource Protection allows to define trusted hosts that will not be subject to detection and mitigation. The current implementation accepts up to 100 specific IP addresses:
CBS# configure apm-resource-protection
CBS(conf-apm-res-protection)# enable
CBS(conf-apm-res-protection)# white-list
CBS(conf-apm-res-prot-white-list)# ip 192.168.1.1
CBS(conf-apm-res-prot-white-list)# ip 192.168.1.2
CBS(conf-apm-res-prot-white-list)# ip 192.168.1.3
...
The CLI doesn't allow to configure an IP subnet.