Link to home
Start Free TrialLog in
Avatar of fertigj
fertigj

asked on

XP Firewall Group Policy - Scope - Subnet Range

Hello..

I am in the process of setting up a  group policy to configure the firewall on our XP Clients {sp2}     This part is working well...were my question enters is how do I {can I} configure port ranges / and or subnet ranges for certain exceptions.  An example of the subnet ranges would be something to the effect of

192.168.1.1 .. 192.168.3.254
192.168.5.1... 192.168.50.254    /etc

If I do something to the effect of 192.168.1.1/255.255.0.0 I assume this is the same as 192.168.*.*
That being the case how would I do 192.168.1.* ?      Any help on this would be appreciated.   Thank you.
Avatar of Rob Williams
Rob Williams
Flag of Canada image

192.168.1.*  = 192.168.1.0 to 192.168.1.255 = 192.168.1.0/255.255.255.0  ( I believe the firewall will also accept the notation 192.168.1.0/24 )
Avatar of fertigj
fertigj

ASKER

That makes senses for one subnet... What would the notation be for the following?

172.20.3.1 .. 172.20.9.254  
172.20.3.10  .. 172.20.3.50

{similar examples and or reading material would also be appreciated :) )

ASKER CERTIFIED SOLUTION
Avatar of Rob Williams
Rob Williams
Flag of Canada image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of fertigj

ASKER

this wasn't exactly what I was looking for...but that is more a limitation Windows.   Thank you for your help :)
That is not a Windows limitation but TCP/IP networking in general. The design of IPV4 networking is very specific and we have to work within it.
You could always make multiple smaller subnet entries that add up to the range you are trying to cover.

Thanks fertigj.
Cheers !
--Rob