cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to Cisco Firewalls Community


623
Views
0
Helpful
3
Replies
Highlighted

Access Rule for IP Range

Hello,

I have been asked to give access to one of our internal servers from a range of IPs within a larger subnet.  It is 30 ip's within a subnet of 510 addresses.  Is there a way to do just a range for the access rule source instead of creating a single object for all 30 ip's and then putting them into a network object group?  I really do not want to create a network object for the whole subnet being that it contains ip addresses that do not require access.  Any help would be greatly appreciated.  Thanks.

Everyone's tags (4)
1 ACCEPTED SOLUTION

Accepted Solutions
Contributor

Re: Access Rule for IP Range

you might be able to use a subnet mask that includes most of the IPs and for the remaining you can add single acls. There is no way to create an acl with a pool of IPs. As you know you can use object-group or get creative with subnetting.

I hope this helps.

3 REPLIES 3
Contributor

Re: Access Rule for IP Range

you might be able to use a subnet mask that includes most of the IPs and for the remaining you can add single acls. There is no way to create an acl with a pool of IPs. As you know you can use object-group or get creative with subnetting.

I hope this helps.

Re: Access Rule for IP Range

That is what I am afraid I will have to do.  Narrow the range down as best I can through subnetting then add the rest

as individual acl's. Thanks!

Contributor

Re: Access Rule for IP Range

no problem. If possible please mark the question as answered.