I have added an IP address to the IP blacklist in the Content Delivery Network (CDN) console. Why can the IP address still be used to request resources?


CDN cannot restrict client-side requests. After you add an IP address to the IP blacklist, requests sent from this IP address receive a 403 HTTP status code. You can check the log entries generated by these requests. For more information, see Download logs.

If a 403 HTTP status code is returned to a client request, you are charged for the network traffic generated during this process. In this process, network traffic is generated by only the response header. Therefore, you are charged for only a small amount of network traffic. For more information, see CDN Pricing.


Typically, log data is provided four to eight hours after a 403 HTTP status code is returned to a client request. We recommend that you enable the real-time log delivery feature that provides log data more efficiently.