gjok
asked on
Subnet Mask
Hi.
I need to let a range of 10 IP addresses through my firewall, but currently I only know how to let one through at a time.
The interface is browser based and has has the following fields (dummy data used ! ):
IP-Address | Subnet-Mask | Operator | Start-Port | End-Port
111.111.111.005 | 255.255.255.255(/32) | = | |
My question is:
If I want to allow through 10 IPs in the range the range from 111.111.111.001 to 111.111.111.010, can I do this by changing the subnet mask?
Thanks.
I need to let a range of 10 IP addresses through my firewall, but currently I only know how to let one through at a time.
The interface is browser based and has has the following fields (dummy data used ! ):
IP-Address | Subnet-Mask | Operator | Start-Port | End-Port
111.111.111.005 | 255.255.255.255(/32) | = | |
My question is:
If I want to allow through 10 IPs in the range the range from 111.111.111.001 to 111.111.111.010, can I do this by changing the subnet mask?
Thanks.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Why don't you use 255.255.255.0 and leave 250+ IP's available?
you cant start wildcard masking with a 32 bit subnet - give us an example of the IP address and subnet you are using
:D ... I haven't even noticed that!!! Excelent!
Cheers.
Cheers.
ASKER
Wow lots of feedback!
I am just asking my client for the exact range. Give me a half hour or so....
I am just asking my client for the exact range. Give me a half hour or so....
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
PeteLong: what do you mean by this?
"you cant start wildcard masking with a 32 bit subnet - give us an example of the IP address and subnet you are using "
If he changes the subnet mask then it won't be a 32 bit subnet anymore will it?
Are you saying he might not own the addresses he wants to let through?
"you cant start wildcard masking with a 32 bit subnet - give us an example of the IP address and subnet you are using "
If he changes the subnet mask then it won't be a 32 bit subnet anymore will it?
Are you saying he might not own the addresses he wants to let through?
He is saying that the example the author gave is wrong. I'll copy&paste it for you:
"The interface is browser based and has has the following fields (dummy data used ! ):
IP-Address | Subnet-Mask | Operator | Start-Port | End-Port
111.111.111.005 | 255.255.255.255(/32) | = | |"
Check the subnet mask used!
Cheers.
"The interface is browser based and has has the following fields (dummy data used ! ):
IP-Address | Subnet-Mask | Operator | Start-Port | End-Port
111.111.111.005 | 255.255.255.255(/32) | = | |"
Check the subnet mask used!
Cheers.
Still not getting it. I take that (255.255.255.255/32) to mean only let this specific address through.
Yes. That's why PeteLong was saying this is not appropiate for subneting! Well ... I'll let PeteLong explain that ...
Sorry PeteLong for that.
Cheers
Sorry PeteLong for that.
Cheers
But the asker was saying the subnet mask wants changing anyway so I can't see it's an issue.
ASKER
The subnet mask has never been changed. Whats there is the default when creating a new entry.
Anyway, the client has come back and said they cant supply a range because "the servers are segregated into VLANS." (whatever that means), so I cant supply an actual range to demonstrate with.
Anyway, the client has come back and said they cant supply a range because "the servers are segregated into VLANS." (whatever that means), so I cant supply an actual range to demonstrate with.
ASKER
Although my question no longer need answering, I can still use this information for future reference.
I need to work out who to give the points to - to be honest I really dont understand enough about this stuff to know who to award them too ?!?!? :(
Please bear with me...
I need to work out who to give the points to - to be honest I really dont understand enough about this stuff to know who to award them too ?!?!? :(
Please bear with me...
I would say that neteducation & harbor235 deserve the points.
If I may ... I believe some of us left here usefull information, ... others just repeated it!
I believe it's fair enough just to split the points among all of us who realy contributed ...
Cheers.
I believe it's fair enough just to split the points among all of us who realy contributed ...
Cheers.
Sorry rafael_acc I was just looking for straight answers to the original question to help the asker close it.
I have no axe to grind as I don't deserve any points so hopefully feel fairly objective here.
As I see it neteducation gave a workable answer to the original question.
rafael_acc gave an explanation in binary.
Then harbor235 gave an expansion to allow just the 10 addresses. Down to the asker in the end I guess.
just my 2% of a dollar
I have no axe to grind as I don't deserve any points so hopefully feel fairly objective here.
As I see it neteducation gave a workable answer to the original question.
rafael_acc gave an explanation in binary.
Then harbor235 gave an expansion to allow just the 10 addresses. Down to the asker in the end I guess.
just my 2% of a dollar
Ah ????
So why are you sorry ??? I saw your post after I submitted mine ... So, my post is not related to yours or whatever ... I don't get what's your point on the ...
"Sorry rafael_acc I was just looking for straight answers to the original question to help the asker close it.
I have no axe to grind as I don't deserve any points so hopefully feel fairly objective here"
Cheers
So why are you sorry ??? I saw your post after I submitted mine ... So, my post is not related to yours or whatever ... I don't get what's your point on the ...
"Sorry rafael_acc I was just looking for straight answers to the original question to help the asker close it.
I have no axe to grind as I don't deserve any points so hopefully feel fairly objective here"
Cheers
I suggested neteducation & harbor235 and thought your post was objecting to my suggestion. I was saying sorry in case I had offended you by not including you in my suggestion.
Don't worry! Is good to get some points but that's not my main objective being here! Thanks for the consideration anyway.
Cheers.
Cheers.
ASKER
Hi.
Well that was hard work. I ended up splitting the point 50 each to the guys I thought helpd me most (especially rafael_acc for explaining it in great detail)
I chose harbor235 as the main answer as he demonstrated how to allow exactly 10 which was what I (originally) needed.
I hope you are all OK with this.
Many thanks to all.
Well that was hard work. I ended up splitting the point 50 each to the guys I thought helpd me most (especially rafael_acc for explaining it in great detail)
I chose harbor235 as the main answer as he demonstrated how to allow exactly 10 which was what I (originally) needed.
I hope you are all OK with this.
Many thanks to all.
Thanks. Good Luck!
Cheers.
Cheers.
Yikes. Sorry I am wrong neteducation is right. Dodgy arithmetic.