CIDR
NetworkingCIDR is a method for representing IP address ranges using a prefix length (for example, /24) instead of older class-based boundaries. It enables flexible subnet sizing, efficient allocation of IPv4 and IPv6 space, and route aggregation to reduce routing table size. In hosting, CIDR notation is commonly used to define allowed networks, private subnets, and firewall rules.
How It Works
CIDR (Classless Inter-Domain Routing) expresses a network as an IP address plus a prefix length, such as 203.0.113.0/24 or 2001:db8::/32. The prefix length indicates how many leading bits identify the network portion; the remaining bits identify hosts within that network. A /24 in IPv4 corresponds to the subnet mask 255.255.255.0, while shorter prefixes (like /16) describe larger ranges and longer prefixes (like /28) describe smaller ranges.
Because CIDR is bit-based rather than class-based, networks can be sized to match real needs. It also supports route aggregation (supernetting), where multiple contiguous networks can be summarized into a single larger prefix, reducing routing complexity. In practical hosting operations, CIDR notation appears in access control lists, cloud security groups, load balancer allowlists, VPN configurations, and reverse proxy rules that match entire networks rather than single IPs.
Why It Matters for Web Hosting
When comparing hosting plans, CIDR literacy helps you evaluate network features and security controls. You may need to allow your office network to reach an admin panel, restrict SSH to a trusted range, or understand what an included IP block means for dedicated servers and VPS setups. Providers also describe private networking, VPC subnets, and firewall policies in CIDR terms, so knowing it reduces misconfiguration risk and improves security.
Common Use Cases
- Allowlisting or blocklisting IP ranges in firewalls (for example, permitting 198.51.100.0/24)
- Defining private subnets for internal services (for example, 10.0.0.0/16)
- Configuring VPN routes and split tunneling to include specific networks
- Setting security group rules for SSH, database access, or admin dashboards
- Route aggregation and BGP announcements for larger hosting networks
CIDR vs Subnet Mask
CIDR and subnet masks describe the same boundary in different formats. CIDR uses a prefix length (/n) that directly states how many bits are fixed for the network, while a subnet mask writes those bits as dotted decimal in IPv4 (for example, /24 equals 255.255.255.0). CIDR is more compact, works consistently for IPv6, and is the standard notation used in modern hosting dashboards, APIs, and network documentation.