Hi all,
We have a VPN from various remote devices to our server, I am trying to clean up the firewall rules. I want to tell our providor to give us a continuous block that is easier to program into the firewall (I beleive our PIX only allows 10 rules?).
Subnet masks are completely bambooziling me at the moment. Using a mask generator ( I can generate my range with either 7 rules or 4. Obviously 4 is much better. Either way, when I put the base and mask back into SolarWinds subnet generator, there are jumps in the generated IPs.
Does anyone have a tool that will generate continous IP ranges with simple masks, and generate simple masks if I give it the range to allow?
I'm trying to allow xxx.xxx.xxx.177 to xxx.xxx.xxx.204:
Base/Mask CIDR From To
xxx.xxx.xxx.177/255.255.255.255 xxx.xxx.xxx.177/32 xxx.xxx.xxx.177 xxx.xxx.xxx.177 1
xxx.xxx.xxx.178/255.255.255.254 xxx.xxx.xxx.178/31 xxx.xxx.xxx.178 xxx.xxx.xxx.179 2
xxx.xxx.xxx.180/255.255.255.252 xxx.xxx.xxx.180/30 xxx.xxx.xxx.180 xxx.xxx.xxx.181 2
xxx.xxx.xxx.184/255.255.255.248 xxx.xxx.xxx.184/29 xxx.xxx.xxx.185 xxx.xxx.xxx.190 6
xxx.xxx.xxx.192/255.255.255.248 xxx.xxx.xxx.192/29 xxx.xxx.xxx.193 xxx.xxx.xxx.198 6
xxx.xxx.xxx.200/255.255.255.252 xxx.xxx.xxx.200/30 xxx.xxx.xxx.201 xxx.xxx.xxx.202 2
xxx.xxx.xxx.204/255.255.255.255 xxx.xxx.xxx.204/32 xxx.xxx.xxx.204 xxx.xxx.xxx.204 1
Base/Mask CIDR From To
xxx.xxx.xxx.176/255.255.255.240 xxx.xxx.xxx.176/28 xxx.xxx.xxx.177 xxx.xxx.xxx.190 14
xxx.xxx.xxx.192/255.255.255.248 xxx.xxx.xxx.192/29 xxx.xxx.xxx.193 xxx.xxx.xxx.198 6
xxx.xxx.xxx.200/255.255.255.252 xxx.xxx.xxx.200/30 xxx.xxx.xxx.201 xxx.xxx.xxx.202 2
xxx.xxx.xxx.204/255.255.255.255 xxx.xxx.xxx.204/32 xxx.xxx.xxx.204 xxx.xxx.xxx.204 1
We have a VPN from various remote devices to our server, I am trying to clean up the firewall rules. I want to tell our providor to give us a continuous block that is easier to program into the firewall (I beleive our PIX only allows 10 rules?).
Subnet masks are completely bambooziling me at the moment. Using a mask generator ( I can generate my range with either 7 rules or 4. Obviously 4 is much better. Either way, when I put the base and mask back into SolarWinds subnet generator, there are jumps in the generated IPs.
Does anyone have a tool that will generate continous IP ranges with simple masks, and generate simple masks if I give it the range to allow?
I'm trying to allow xxx.xxx.xxx.177 to xxx.xxx.xxx.204:
Base/Mask CIDR From To
xxx.xxx.xxx.177/255.255.255.255 xxx.xxx.xxx.177/32 xxx.xxx.xxx.177 xxx.xxx.xxx.177 1
xxx.xxx.xxx.178/255.255.255.254 xxx.xxx.xxx.178/31 xxx.xxx.xxx.178 xxx.xxx.xxx.179 2
xxx.xxx.xxx.180/255.255.255.252 xxx.xxx.xxx.180/30 xxx.xxx.xxx.180 xxx.xxx.xxx.181 2
xxx.xxx.xxx.184/255.255.255.248 xxx.xxx.xxx.184/29 xxx.xxx.xxx.185 xxx.xxx.xxx.190 6
xxx.xxx.xxx.192/255.255.255.248 xxx.xxx.xxx.192/29 xxx.xxx.xxx.193 xxx.xxx.xxx.198 6
xxx.xxx.xxx.200/255.255.255.252 xxx.xxx.xxx.200/30 xxx.xxx.xxx.201 xxx.xxx.xxx.202 2
xxx.xxx.xxx.204/255.255.255.255 xxx.xxx.xxx.204/32 xxx.xxx.xxx.204 xxx.xxx.xxx.204 1
Base/Mask CIDR From To
xxx.xxx.xxx.176/255.255.255.240 xxx.xxx.xxx.176/28 xxx.xxx.xxx.177 xxx.xxx.xxx.190 14
xxx.xxx.xxx.192/255.255.255.248 xxx.xxx.xxx.192/29 xxx.xxx.xxx.193 xxx.xxx.xxx.198 6
xxx.xxx.xxx.200/255.255.255.252 xxx.xxx.xxx.200/30 xxx.xxx.xxx.201 xxx.xxx.xxx.202 2
xxx.xxx.xxx.204/255.255.255.255 xxx.xxx.xxx.204/32 xxx.xxx.xxx.204 xxx.xxx.xxx.204 1