This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Non continuous ip range definition

Hi all from Spain.

I need to define a IP range object based only in the third digit/octect. The goal is a list of all "22" IP of each /24 network on a /16 set.

Example: 10.66.1.22 to 10.66.254.22

The fw allows me to create a ip range definition with those values, but ¿is it interpreting it as 10.66.1-254.22 or is it including also 10.66.1.[23,24,25...]?

We need to expose that range on a IPsec, and using a /16 network (10.66.0.0), and I thing is too much wide for only a few hosts :-(

If this is not possible, ¿any ideas?

Thank you all.

This thread was automatically locked due to age.

Parents

0 Alan Brand 9 months ago

In theory a range 10.68.0.22 with netmask 255.255.0.255 should do. However most IP stacks (as the one in Linux) rely on the "continuous number of one bits" without gap and reject such a bit mask.

If that's the case your best bet is "group of addressees" 10.68.1.22, 10.68.2.22,... (best generated with a script and used on the CLI to avoid typing).
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Alan Brand 9 months ago

In theory a range 10.68.0.22 with netmask 255.255.0.255 should do. However most IP stacks (as the one in Linux) rely on the "continuous number of one bits" without gap and reject such a bit mask.

If that's the case your best bet is "group of addressees" 10.68.1.22, 10.68.2.22,... (best generated with a script and used on the CLI to avoid typing).
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data