What Bot IP range should I block?

[Navid]

I have a list of bot (traffic) IPs (around 6000). I'm able to block them when buying traffic to my sites.

193.154.239.54
84.56.102.50
92.105.183.21
193.83.238.7
212.95.5.170
92.211.215.128
93.214.99.1
88.152.186.12
etc....

I can see many of the IPs are almost the same and only last IP numbers are different.

So my question is when I'm blocking IP ranges that I want to block, what range should I put so that I completely don't stop traffic but still block the majority of bot-traffic).

Currently, I'm doing 255 (range blow), but I feel it's too much since I block over 1.2M IPs

193.154.239.1/255
84.56.102.1/255
92.105.183.1/255
193.83.238.1/255
212.95.5.1/255
92.211.215.1/255
93.214.99.1/255
88.152.186.1/255

Any feedback would be appreciated!

 

[KwarkAds]

If you want to block an ip range with 255 ip (.0 to .255) the CIDR mask is /24. This is also known as a C block.

To find out who owns those IPs, use a whois tool for ips such as viewdns.info, dnsstuff.com, arin.net or any
of the other 4 RIR (ip registries)

BTW, a lot of bot traffic comes from data center ranges BUT not all (ex: amazonaws, azure, linode, softlayer, etc...)

This is how we block most bots at initial click level (pre processor)

1) realtime bot honeypot traps fed to realtime blacklist (and later for placement analysis/blockage)
2) datacenter by PTR (reverse dns) for bot havens
3) datacenter by IP range (CIDR blocks) for bot havens
4) TOR IP ranges (not all bots but not good traffic)
5) Proxy IP ranges (via maxmind DB - one of the standards used by carts, ISPs, geo-data, etc...)
6) jquery java script redirection.

Hope that gives you an idea