ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Requests are getting blocked with “network_not_allowed” in WSS.


Article ID: 240239


Updated On:


Web Security Service - WSS


Requests to specific websites are getting blocked by WSS with the following exception page;


By default WSS block the requests to certain IP ranges which are non routable addresses.


Request's sent to the following IP segments would be blocked by WSS. There is no way to override this block, to access any of these destinations the IP\domain has to be bypassed from WSS.

Address block Address range Description– Current network.– Used for local communications within a private network.– Shared address space[5] for communications between a service provider and its subscribers when using a carrier-grade NAT.– Used for loopback addresses to the local host.– Used for link-local addresses between two hosts on a single link when no IP address is otherwise specified, such as would have normally been retrieved from a DHCP server.– Used for local communications within a private network.– IETF Protocol Assignments.– Assigned as TEST-NET-1, documentation and examples.– Reserved. Formerly used for IPv6 to IPv4 relay.– Used for local communications within a private network.– Used for benchmark testing of inter-network communications between two separate subnets.– Assigned as TEST-NET-2, documentation and examples.– Assigned as TEST-NET-3, documentation and examples.– In use for IP multicast. (Former Class D network.)– Reserved for future use. (Former Class E network.)