diff --git a/CHANGELOG.md b/CHANGELOG.md
index 26399dc..496559b 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -43,6 +43,10 @@
   - it-windows-base
     - update n_encase address
 
+* 2.3.0 -- 2023-02-16
+  - ois-scanner
+   - update to use prefix list ois-scanner.base
+
 # OLDER
 
 ## web
diff --git a/common/version.tf b/common/version.tf
index 34728db..03d330b 100644
--- a/common/version.tf
+++ b/common/version.tf
@@ -1,3 +1,3 @@
 locals {
-  _module_version = "2.2.7"
+  _module_version = "2.3.0"
 }
diff --git a/ois-scanner/README.md b/ois-scanner/README.md
index 23ec618..647478a 100644
--- a/ois-scanner/README.md
+++ b/ois-scanner/README.md
@@ -40,6 +40,7 @@ No modules.
 | Name | Type |
 |------|------|
 | [aws_security_group.this_security_group](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/security_group) | resource |
+| [aws_ec2_managed_prefix_list.list](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/ec2_managed_prefix_list) | data source |
 | [aws_vpc.selected](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/vpc) | data source |
 
 ## Inputs
diff --git a/ois-scanner/data.prefix_lists.tf b/ois-scanner/data.prefix_lists.tf
new file mode 100644
index 0000000..d9c72cb
--- /dev/null
+++ b/ois-scanner/data.prefix_lists.tf
@@ -0,0 +1,8 @@
+data "aws_ec2_managed_prefix_list" "list" {
+  #  count = length(var.prefix_list_name) > 0 ? 1 : 0
+  filter {
+    name = "prefix-list-name"
+    #    values = [var.prefix_list_name]
+    values = ["ois-scanner.base"]
+  }
+}
diff --git a/ois-scanner/main.tf b/ois-scanner/main.tf
index e90dd02..579c96a 100644
--- a/ois-scanner/main.tf
+++ b/ois-scanner/main.tf
@@ -43,7 +43,8 @@ resource "aws_security_group" "this_security_group" {
     from_port   = 0
     to_port     = 0
     protocol    = -1
-    cidr_blocks = local.ipv4_cidr
+    #    cidr_blocks = local.ipv4_cidr
+    prefix_list_ids = [data.aws_ec2_managed_prefix_list.list.id]
   }
 
   egress {