Security API and Threat Intelligence

Our Security API provides advanced cyber security solutions that deliver comprehensive cyber threat assessments. It analyzes the provided IP address to detect VPNs, proxies, and related technologies. The API calculates a threat score based on multiple attributes to reflect the overall risk level. It detects proxies, identifies their types (e.g., VPN, PROXY, RELAY), and reveals the VPN service provider.
The Security API also determines if the IP is linked to anonymous activity or associated with bot behavior. Additionally, the security data includes accurate geolocation details. This allows you to better protect your systems from malicious activities and region-based threats.

    • stringip:"3.144.156.43",
    • objectsecurity:Object,
      • numberthreat_score:0,
      • booleanis_tor:false,
      • booleanis_proxy:false,
      • stringproxy_type:"",
      • stringproxy_provider:"",
      • booleanis_anonymous:false,
      • booleanis_known_attacker:false,
      • booleanis_spam:false,
      • booleanis_bot:false,
      • booleanis_cloud_provider:false,
      • stringcloud_provider:"",
    • objectlocation:Object,
      • stringcontinent_code:"NA",
      • stringcontinent_name:"North America",
      • stringcountry_code2:"US",
      • stringcountry_code3:"USA",
      • stringcountry_name:"United States",
      • stringcountry_name_official:"United States of America",
      • stringcountry_capital:"Washington, D.C.",
      • stringstate_prov:"Ohio",
      • stringstate_code:"US-OH",
      • stringdistrict:"Franklin",
      • stringcity:"Columbus",
      • stringzipcode:"43215",
      • stringlatitude:"39.96199",
      • stringlongitude:"-83.00275",
      • booleanis_eu:false,
      • stringcountry_flag:"https://ipgeolocation.io/static/flags/us_64.png",
      • stringgeoname_id:"4516394",
      • stringcountry_emoji:"🇺🇸",
    • objectnetwork:Object,
      • objectasn:Object,
        • stringas_number:"AS16509",
        • stringorganization:"Amazon.com, Inc.",
        • stringcountry:"US",
      • objectcompany:Object,
        • stringname:"Amazon Technologies Inc.",

    IP Security Lookup

    This API provides a reliable proxy detection method, adding seamless VPN and proxy check capabilities. The threat score reflects the risk associated with the provided IP, ranging from 0 to 100. The API indicates whether the IP is a proxy, along with its provider, making it a powerful proxy detector tool.
    It also identifies if an IP address is a bot, uses Tor, sends spam, hides its identity, or performs attacks. Additionally, it shows whether the IP is linked to a cloud provider and includes the provider’s name. These features make the API a powerful and accurate proxy detection service.

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 75,
    5    "is_tor": false,
    6    "is_proxy": true,
    7    "proxy_type": "VPN",
    8    "proxy_provider": "Nord VPN",
    9    "is_anonymous": true,
    10    "is_known_attacker": true,
    11    "is_spam": false,
    12    "is_bot": false,
    13    "is_cloud_provider": true,
    14    "cloud_provider": "Packethub S.A."
    15  }

    IP Security With Network Details

    The API provides both the Autonomous System (AS) Number and organization details about the specified IP address. The API response provides network identification data about the IP address which enables easier detection of service providers as well as potential malicious networks.
    Enriching security data with AS number details helps detect risky patterns and supports proactive threat response. Blocking dangerous IP ranges, along with restricting access to IPs associated with specific AS numbers, organizations, or ISPs, helps enhance your cyber security posture.

    Request

    curl -X GET 'https://api.ipgeolocation.io/v2/security?apiKey=API_KEY&ip=2.56.188.34&include=network'

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 75,
    5    "is_tor": false,
    6    "is_proxy": true,
    7    "proxy_type": "VPN",
    8    "proxy_provider": "Nord VPN",
    9    "is_anonymous": true,
    10    "is_known_attacker": true,
    11    "is_spam": false,
    12    "is_bot": false,
    13    "is_cloud_provider": true,
    14    "cloud_provider": "Packethub S.A."
    15  },
    16  "network": {
    17    "asn": {
    18      "as_number": "3640",
    19      "organization": "C I C E S E",
    20      "country": "MX"
    21    },
    22    "company": {
    23      "name": "Packethub S.A.",
    24    }
    25  }
    26}

    IP Security With Geolocation

    The geolocation information for the provided IP can also be included in the default response of the Security API. The geolocation data contains the country, state, city, and ZIP code, along with the latitude and longitude of the IP address. This cybersecurity intelligence helps identify region-specific threats and block high-risk IPs by location.

    Request

    curl -X GET 'https://api.ipgeolocation.io/v2/security?apiKey=API_KEY&ip=2.56.188.34&include=location'

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 75,
    5    "is_tor": false,
    6    "is_proxy": true,
    7    "proxy_type": "VPN",
    8    "proxy_provider": "Nord VPN",
    9    "is_anonymous": true,
    10    "is_known_attacker": true,
    11    "is_spam": false,
    12    "is_bot": false,
    13    "is_cloud_provider": true,
    14    "cloud_provider": "Packethub S.A."
    15  },
    16  "location": {
    17    "continent_code": "OC",
    18    "continent_name": "Oceania",
    19    "country_code2": "AU",
    20    "country_code3": "AUS",
    21    "country_name": "Australia",
    22    "country_name_official": "Commonwealth of Australia",
    23    "country_capital": "Canberra",
    24    "state_prov": "Queensland",
    25    "state_code": "AU-QLD",
    26    "district": "",
    27    "city": "Brisbane",
    28    "zipcode": "4101",
    29    "latitude": "-27.47306",
    30    "longitude": "153.01421",
    31    "is_eu": false,
    32    "country_flag": "https://ipgeolocation.io/static/flags/au_64.png",
    33    "geoname_id": "10113228",
    34    "country_emoji": "🇦🇺"
    35  }
    36}

    Bulk IP Security Lookup

    Our IP Security API allows you to retrieve security details for up to 50,000 IPs at once using the bulk lookup feature. This powerful capability saves time and enables users to analyze large volumes of IP behavior patterns quickly and efficiently. Through bulk IP security lookups, organizations can detect VPN usage at scale, perform VPN checks, identify proxies, bots, and known attackers across large datasets, and automate threat detection workflows for real-time security monitoring.
    Whether you're monitoring user activity, blocking suspicious traffic, or conducting cybersecurity audits, the bulk lookup API is built to support high-performance threat intelligence operations.

    Request

    curl -X POST 'https://api.ipgeolocation.io/v2/security-bulk?apiKey=API_KEY' \
    -H 'Content-Type: application/json' \
    -d '{
      "ips": ["1.0.0.0", "1.0.0.1", "1.0.0.2"]
    }'

    Response in Multiple Languages

    You can retrieve the location information for an IP address in the following languages:

    US FlagEnglish DE FlagGerman RU FlagRussian JP FlagJapanese FR FlagFrench CN FlagChinese Simplified ES FlagSpanish CZ FlagCzech IT FlagItalian KO FlagKorean FA FlagPersian PT FlagPortuguese

    Use Cases

    Login Protection

    When a user attempts to log in, their IP address can be analyzed for threat level, proxy or VPN usage, and whether it is associated with known attackers, spam, or bots. Leveraging advanced VPN detection, this API stands out as one of the most reliable VPN detector services.
    It plays a key role in controlling unauthorized logins and reducing the risk of multiple account creation. This use case is especially important for banking platforms, SaaS applications, and any user-based systems where security and identity integrity are paramount.

    iplocation

    E-commerce Fraud Prevention

    During the checkout process, the API works as a reliable proxy checker by analyzing the customer’s IP address. It can detect whether the IP is associated with a VPN, proxy, Tor, bot, spam, cloud provider, or shows a suspicious location mismatch. This helps prevent fraudulent transactions, such as fake orders or the use of stolen credit cards, protecting both your business and your customers.

    geoip

    Real-Time Chat & Community Filtering

    Before allowing users to send messages or join live chats, you can leverage the API’s bot detection and threat analysis features to evaluate their IP address. This helps identify spammy behavior, anonymous access, or any history of malicious activity. It ensures a safer and more trustworthy environment for gaming platforms, community forums, and live chat applications.

    iplook-up

    Location Based Restriction

    Combining geolocation data with security analysis provides a more comprehensive defense against privacy and security threats. The combination of geolocation with IP address security features enables you to make stronger security decisions.The method proves useful in blocking specific regions that take part in harmful activities thus minimizing security threats.

    geoip

    AS Number Based Restriction

    Our IP Security API not only provides the AS Number but also reveals the associated ASN organization and company name, along with detailed security insights and geolocation data. This empowers security teams to identify and block entire networks or specific organizations involved in malicious activity. It allows for broader, more accurate, and proactive threat mitigation through enhanced visibility and context.

    iplook-up

    Ready to get started?Get Started with IP Security API Today

    IP Security API Documentation

    IP Security API

    IP Security API provides detailed security information for a given IP address. It detects whether the IP is associated with a proxy, Tor node, or bot, and identifies the proxy type (e.g., VPN, PROXY, RELAY) along with its VPN/proxy service provider—making it a powerful VPN checker. The API also flags IPs involved in spam activities and checks if the IP is linked to a cloud provider, including the cloud provider’s name.

    The IP Security API offers two endpoints for threat detection, supporting both single and bulk IP lookups.

    Note: For client-side calls to the endpoints mentioned below using the Request Origin (available on paid plans only), the apiKey parameter can be omitted.

    Single IP Security Lookup API

    1. Lookup With IP

    You can use the single IP lookup API to get security details of a given IP in both JSON and XML formats.The URL for this API is https://api.ipgeolocation.io/v2/security?apiKey=API_KEY&ip=2.56.188.34 and its default JSON response is shown below:

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 75,
    5    "is_tor": false,
    6    "is_proxy": true,
    7    "proxy_type": "VPN",
    8    "proxy_provider": "Nord VPN",
    9    "is_anonymous": true,
    10    "is_known_attacker": true,
    11    "is_spam": false,
    12    "is_bot": false,
    13    "is_cloud_provider": true,
    14    "cloud_provider": "Packethub S.A."
    15  }
    16}

    2. Lookup Without an IP

    Without passing IP Address, API returns the security health details of the client device IP. You can perform this lookup using the following URL: https://api.ipgeolocation.io/v2/security?apiKey=API_KEY and its default JSON response is given below:

    Response

    1{
    2  "ip": "207.244.89.161",
    3  "security": {
    4    "threat_score": 90,
    5    "is_tor": false,
    6    "is_proxy": true,
    7    "proxy_type": "VPN",
    8    "proxy_provider": "Vpnsurf VPN",
    9    "is_anonymous": true,
    10    "is_known_attacker": true,
    11    "is_spam": true,
    12    "is_bot": false,
    13    "is_cloud_provider": false,
    14    "cloud_provider": ""
    15  }
    16}

    Parameters

    You can use following parameters to customize the API response according to your requirements.

    A. Including Data (include)

    Location and network details can be included by specifying the include parameter.

    1. Combine IP Security with Geolocation

    This parameter accepts two values: location and network. To retrieve security details along with geolocation data, set the include parameter to location like mentioned below. Note that the apiKey is also passed with query parameter for authorization. The response for this parameter appears below.

    curl -X GET 'https://api.ipgeolocation.io/v2/security?apiKey=API_KEY&ip=2.56.188.34&include=location'

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 75,
    5    "is_tor": false,
    6    "is_proxy": true,
    7    "proxy_type": "VPN",
    8    "proxy_provider": "Nord VPN",
    9    "is_anonymous": true,
    10    "is_known_attacker": true,
    11    "is_spam": false,
    12    "is_bot": false,
    13    "is_cloud_provider": true,
    14    "cloud_provider": "Packethub S.A."
    15  },
    16  "location": {
    17    "continent_code": "OC",
    18    "continent_name": "Oceania",
    19    "country_code2": "AU",
    20    "country_code3": "AUS",
    21    "country_name": "Australia",
    22    "country_name_official": "Commonwealth of Australia",
    23    "country_capital": "Canberra",
    24    "state_prov": "Queensland",
    25    "state_code": "AU-QLD",
    26    "district": "",
    27    "city": "Brisbane",
    28    "zipcode": "4101",
    29    "latitude": "-27.47306",
    30    "longitude": "153.01421",
    31    "is_eu": false,
    32    "country_flag": "https://ipgeolocation.io/static/flags/au_64.png",
    33    "geoname_id": "10113228",
    34    "country_emoji": "🇦🇺"
    35  }
    36}

    2. Combine IP Security with Network Details

    To retrieve security details along with AS Number and network information, set the include parameter to network like mentioned below. Note that the apiKey is also passed with query parameter for authorization. The response for this parameter appears below.

    curl -X GET 'https://api.ipgeolocation.io/v2/security?apiKey=API_KEY&ip=2.56.188.34&include=network'

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 75,
    5    "is_tor": false,
    6    "is_proxy": true,
    7    "proxy_type": "VPN",
    8    "proxy_provider": "Nord VPN",
    9    "is_anonymous": true,
    10    "is_known_attacker": true,
    11    "is_spam": false,
    12    "is_bot": false,
    13    "is_cloud_provider": true,
    14    "cloud_provider": "Packethub S.A."
    15  },
    16  "network": {
    17    "asn": {
    18      "as_number": "3640",
    19      "organization": "C I C E S E",
    20      "country": "MX"
    21    },
    22    "company": {
    23      "name": "Packethub S.A.",
    24    }
    25  }
    26}

    3. Combine IP Security with Both Geolocation and Network details

    For complete security insights, you can include both geolocation data and network information of an IP address. To do this, set the Include by separating them with a comma include=location,network like mentioned below. Note that the apiKey is also passed with query parameter for authorization. The response for these values given below:

    curl -X GET 'https://api.ipgeolocation.io/v2/security?apiKey=API_KEY&ip=2.56.188.34&include=location,network'

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 75,
    5    "is_tor": false,
    6    "is_proxy": true,
    7    "proxy_type": "VPN",
    8    "proxy_provider": "Nord VPN",
    9    "is_anonymous": true,
    10    "is_known_attacker": true,
    11    "is_spam": false,
    12    "is_bot": false,
    13    "is_cloud_provider": true,
    14    "cloud_provider": "Packethub S.A."
    15  },
    16  "location": {
    17    "continent_code": "OC",
    18    "continent_name": "Oceania",
    19    "country_code2": "AU",
    20    "country_code3": "AUS",
    21    "country_name": "Australia",
    22    "country_name_official": "Commonwealth of Australia",
    23    "country_capital": "Canberra",
    24    "state_prov": "Queensland",
    25    "state_code": "AU-QLD",
    26    "district": "",
    27    "city": "Brisbane",
    28    "zipcode": "4101",
    29    "latitude": "-27.47306",
    30    "longitude": "153.01421",
    31    "is_eu": false,
    32    "country_flag": "https://ipgeolocation.io/static/flags/au_64.png",
    33    "geoname_id": "10113228",
    34    "country_emoji": "🇦🇺"
    35  },
    36  "network": {
    37    "asn": {
    38      "as_number": "3640",
    39      "name": "C I C E S E",
    40      "country": "MX"
    41    },
    42    "company": {
    43      "name": "Packethub S.A.",
    44    }
    45  }
    46}

    B. Excluding Fields (excludes)

    You can exclude specific fields from the API response based on your requirements, except for the ip field, which is always included. For example, If you want to remove is_tor and is_cloud_provider from api response, you can put the keys in excludes parameter like this:

    curl -X GET 'https://api.ipgeolocation.io/v2/security?apiKey=API_KEY&ip=2.56.188.34&excludes=security.is_tor,security.is_cloud_provider'

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 75,
    5    "is_proxy": true,
    6    "proxy_type": "VPN",
    7    "proxy_provider": "Nord VPN",
    8    "is_anonymous": true,
    9    "is_known_attacker": true,
    10    "is_spam": false,
    11    "is_bot": false,
    12    "cloud_provider": "Packethub S.A."
    13  }

    This helps reduce payload size and tailors the response to your application’s needs.

    C. Get Specific Fields (fields)

    You can also retrieve only the specific fields you need from the geolocation and network details. To do this, use the fields parameter and specify the object and field names you want in the response. For example, if you only need threat_score, city and as_number in api response, you can put the keys in fields parameter, as demonstrated in the URL below. Please note that, to make this work, you need to include the objects that aren't included by default. If you're selecting specific fields from those objects (like location or network), make sure to include the full object first. Kindly refer to example given below:

    curl -X GET 'https://api.ipgeolocation.io/v2/security?apiKey=API_KEY&ip=2.56.188.34&include=location,network&fields=security.threat_score,location.city,network.asn.as_number'

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 75
    5  },
    6  "location": {
    7    "city": "Brisbane"
    8  },
    9  "network": {
    10    "asn": {
    11      "as_number": "AS62240"
    12    }
    13  }
    14}

    D. Response in Multiple Languages (lang)

    You can retrieve only the location information for an IP address from the IP Security API in any of these languages:

    • English (en)
    • German (de)
    • Russian (ru)
    • Japanese (ja)
    • French (fr)
    • Chinese Simplified (cn)
    • Spanish (es)
    • Czech (cs)
    • Italian (it)
    • Korean (ko)
    • Persian (fa)
    • Portuguese (pt)

    By default, the API responds in English. You can change the response language by passing the language code as a query parameter lang. Here is an example to get the geolocation data for IP adderss '2.56.188.34' in Chinese language:

    curl -X GET 'https://api.ipgeolocation.io/v2/security?apiKey=API_KEY&ip=2.56.188.34&include=location&lang=cn'

    Response

    1{
    2  "ip": "2.56.188.34",
    3  "security": {
    4    "threat_score": 80,
    5    "is_tor": false,
    6    "is_proxy": true,
    7    "proxy_type": "VPN",
    8    "proxy_provider": "Nord VPN",
    9    "is_anonymous": true,
    10    "is_known_attacker": true,
    11    "is_spam": false,
    12    "is_bot": false,
    13    "is_cloud_provider": false,
    14    "cloud_provider": ""
    15  },
    16  "location": {
    17    "continent_code": "NA",
    18    "continent_name": "北美洲",
    19    "country_code2": "US",
    20    "country_code3": "USA",
    21    "country_name": "美国",
    22    "country_name_official": "",
    23    "country_capital": "",
    24    "state_prov": "德克萨斯州",
    25    "state_code": "US-TX",
    26    "district": "達拉斯縣",
    27    "city": "達拉斯縣",
    28    "zipcode": "75207",
    29    "latitude": "32.78916",
    30    "longitude": "-96.82170",
    31    "is_eu": false,
    32    "country_flag": "https://ipgeolocation.io/static/flags/us_64.png",
    33    "geoname_id": "7181768",
    34    "country_emoji": "🇺🇸"
    35  }
    36}

    Note: Paid plan subscribers are the only ones who can receive responses in languages other than English. All other plans receive responses only in English.

    Bulk IP Security Lookup API

    The Bulk IP Security Lookup API allows you to retrieve security details for up to 50,000 IP addresses in a single request. It supports the same customization parameters as the Single IP Security Lookup API, enabling you to tailor the response to your needs. You can find the API endpoint and a sample JSON response below.

    curl -X POST 'https://api.ipgeolocation.io/v2/security-bulk?apiKey=API_KEY&include=location,network&fields=location.city,network.asn.as_number' \
    -H 'Content-Type: application/json' \
    -d '{ "ips": ["2.56.188.34", "2.56.188.35"] }'

    Response

    1[
    2    {
    3        "ip": "2.56.188.34",
    4        "security": {
    5            "threat_score": 75,
    6            "is_tor": false,
    7            "is_proxy": true,
    8            "proxy_type": "VPN",
    9            "proxy_provider": "Nord VPN",
    10            "is_anonymous": true,
    11            "is_known_attacker": true,
    12            "is_spam": false,
    13            "is_bot": false,
    14            "is_cloud_provider": true,
    15            "cloud_provider": "Packethub S.A."
    16        },
    17        "location": {
    18            "city": "Los Angeles"
    19        },
    20        "network": {
    21            "asn": {
    22                "as_number": "AS62240"
    23            }
    24        }
    25    },
    26    {
    27        "ip": "2.56.188.35",
    28        "security": {
    29            "threat_score": 75,
    30            "is_tor": false,
    31            "is_proxy": true,
    32            "proxy_type": "VPN",
    33            "proxy_provider": "Nord VPN",
    34            "is_anonymous": true,
    35            "is_known_attacker": true,
    36            "is_spam": false,
    37            "is_bot": false,
    38            "is_cloud_provider": true,
    39            "cloud_provider": "Packethub S.A."
    40        },
    41        "location": {
    42            "city": "Los Angeles"
    43        },
    44        "network": {
    45            "asn": {
    46                "as_number": "AS62240"
    47            }
    48        }
    49    }
    50]

    Reference to IP Security API Response

    FieldTypeDescriptionCan be empty?
    ipstringIP address for which security data is required.No
    security.threat_scoreintegerRepresents the risk level associated with a specific IP addressNo
    security.is_torboolean Shows if the IP is using the Tor networkNo
    security.is_proxyboolean Tells if the IP is coming through a proxyNo
    security.proxy_typestring Indicates the kind of proxy used(e.g. VPN, PROXY, RELAY, OPENVPN, WIREGUARD, PRIVATEVPN)Yes
    security.proxy_providerstringName of the detected proxy or VPN provider.Yes
    security.anonymousbooleanShows if the user is hiding their identity.No
    security.is_known_attackerbooleanFlags if the IP is tied to known cyberattacksNo
    security.is_spambooleanTells if the IP is associated with spam activity.No
    security.is_botboolean Indicates if the IP belongs to a bot.No
    security.is_cloud_providerbooleanFlags if the IP comes from a cloud hosting service.No
    security.cloud_providerstringName of the cloud service.Yes
    location.country_namestringThe common name of the countryNo
    location.country_name_officialstring The official full name of the countryNo
    location.country_code2stringThe two-letter ISO country code.No
    location.country_code3stringThe three-letter ISO country code.No
    location.continent_namestringThe full name of the continent where the IP is located.No
    location.continent_codestringA short code representing the continent where the IP is located.No
    location.state_provstringThe name of the state or province within the country.No
    location.state_codestringThe code for the state or province.No
    location.country_capitalstringThe capital city of the country.No
    location.citystringThe city associated with the IP addressYes
    location.districtstringThe district associated with the IP addressYes
    location.zipcodestringThe postal or ZIP code of the location.No
    location.latitudestringThe latitude coordinate for the IP location.No
    location.longitudestringThe longitude coordinate for the IP location.No
    location.is_eubooleanIndicates if the IP location is within the European Union.No
    location.country_flagstringA URL linking to an image of the country’s flag.No
    location.country_emojistringAn emoji version of the country’s flag for visual use.No
    location.geoname_idstringA unique ID from the GeoNames database that identifies the geographic location.No
    network.asn.as_numberstringThe Autonomous System Number (ASN) assigned to the network that owns the IP.No
    network.asn.organizationstringThe name of the organization or entity that owns or operates the ASN.No
    network.asn.countrystringThe country where the ASN or its owning organization is registered.No
    network.company.namestringThe name of the company associated with the IP address.No
    network.company.typestringThe type or category of the company (e.g., ISP, hosting provider, enterprise).No
    network.company.domainstringThe official domain or website of the company.No

    • Security: Security details of provided IP.
    • Location: Actual Location of given IP.
    • Network: Information about the network and organization behind the IP address, including ASN and company details.

    Error Codes

    IP Security API returns HTTP status code 200 for a successful API request along with the response.

    While, in case of a bad or invalid request, IP Security API returns 4xx HTTP status code along with a descriptive message explaining the reason for the error.

    Below is a detailed explanation of the specific HTTP status codes and their corresponding error conditions:

    HTTP StatusDescription
    400
    Bad Request

    It is returned for one of the following reasons:

    • If the provided IPv4, IPv6 address, or domain name is invalid.

    • If special character(s) ( ) [ ] { } | ^ ` is passed in the API URL either as paramter or its value. Specially in case of API key.

    • If the IP addresses JSON list is empty, or the provided JSON does not have 'ips' field while querying /security-bulk endpoint.

    • If more than 50,000 IP addresses are provided while quering from /security-bulk endpoint.

    401
    Unauthorized

    It is returned for one of the following reasons:

    • If API key (as apiKey URL parameter) is missing from the request to IP Security API.

    • If an invalid (a random value) API key is provided.

    • If the API request is made from an unverified ipgeolocation.io account.

    • If your account has been disabled or locked to use by the admin due to abuse or illegal activity.

    • When the request to IP Security API is made using API key for a database subscription

    • When the request to IP Security API is made on the 'paused' subscription.

    • If you’re making API requests after your subscription trial has been expired.

    • If your active until date has passed and you need to upgrade your account.

    • If bulk IP to security look-ups endpoint is called using free subscription API key.

    404
    Not Found

    It is returned for one of the following reasons:

    • If the IPv4, IPv6, or domain name does not not exists in our database.

    • If the IPv4, IPv6, or domain name is passed as a path variable, instead of url parameter as ip=.

    • If the wrong endpoint is called, that does not exists in our API.

    405
    Method Not Allowed
    • If wrong HTTP request method is used for calling the endpoints. Only GET and POST methods are allowed. POST method for /security-bulk  endpoint and GET method for /security endpoint requests.

    413
    Content Too Large
    • If the passed data in the POST requests is more than the limit of the API.

    415
    Unsupported Media Type
    • If the payload for IPs in /security-bulk endpoint is mising, or the content type is not mentioned as JSON.

    423
    Locked
    • If the passed IP address is from a bogon ip ranges, or is part of a private network.

    429
    Too Many Requests

    It is returned for one of the following reasons:

    • If the API usage limit has reached for the free subscriptions, or paid subscriptions with the status 'past due', 'deleted' or 'trial expired'.

    • If the surcharge API usage limit has reached against the subscribed plan.

    499
    Client Closed Request
    • If the client has set the very short request or connection timeout, leading to the server closing the request prematurely.

    5XX
    Server Side Error
    • If a 500 (Internal Server Error), 502 (Bad Gateway), 503 (Service Unavailable), 504 (Gateway Timeout), or 505 (HTTP Version Not Supported) status code is returned, it indicates an issue on our end. Please contact us with your request at support@ipgeolocation.io for further assistance.

    Security API FAQs

    What is cyber threat intelligence?
    What is Proxy?
    What is VPN?
    What is TOR?
    What are the differences between Proxy, VPN, and TOR?
    Is a VPN better than a proxy?
    How to get Free VPN/Proxy IPs data?
    How to check if IP Address is VPN/Proxy?
    How can I get VPN/Proxy database?
    What information is included in IP Security API?
    Does the IP Security API support batch IP address lookups?
    How frequently is the Security data updated?
    Can I get sample VPN/Proxy data to evaluate its quality?