Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
3829
Views
5
Helpful
1
Replies

ASA 5520: Create Network Object for range of hosts?

dan
Level 1
Level 1

ā€Ž10-26-2011 01:05 PM - edited ā€Ž03-11-2019 02:42 PM

Hi,

I'm new to Cisco Firewalling. I'm migrating our network objects from our current firewall to a new ASA 5520 configuration. I'm using ASDM 6.4 for configuration.

We have a range of IP addresses for hosts that we need to add to a firewall rule/ACL. In the previous FW software I could create an object that was a range of IP address. For example there is an object called emailservers that is defined as 192.168.2.25-192.168.2.50.

Is there a way to do a similar thing on the ASA 5520?

I can see how to create subnets, but in this case I only have a range of IP addresses, no subnet mask.

Any help greatly appreciated.

Labels:
0 Helpful
1 Reply 1

Maykol Rojas
Cisco Employee
Cisco Employee

ā€Ž10-28-2011 12:17 AM

Sure there is,

hostname(config)# object network TEST2

hostname(config-network-object)# range  10.1.2.1 10.1.2.70

No need for subnet masks, this will be a Object network, not an Object-group of type network. Now in 8.3 they are a lot different.

http://www.cisco.com/en/US/docs/security/asa/asa83/configuration/guide/nat_objects.html

Check this doc for reference.

Cheers,

Mike

Mike
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card