cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
746
Views
5
Helpful
2
Replies

Firepower / Firesight ACL platform setting proper syntax for IP Range

jwornstaff
Level 1
Level 1

Does any one know the correct syntax for specifying an IP range ACL in the platform settings of Firepower management Center?

In example under Devices>Platform Settings>Access List, the add rule, the host IP.

For say ssh or ssl or snmp.

Config guide says specify host IP or Range, but I can't figure out what it wants to specify the range...wildcard, mask, dashes, etc.

1 Accepted Solution

Accepted Solutions

niko
Level 1
Level 1

I've used limiting access to the IP subnet in a form of IP/mask, basically something like this: 10.10.10.0/24 or, for a single host, simply an IP without anything added to it.

View solution in original post

2 Replies 2

niko
Level 1
Level 1

I've used limiting access to the IP subnet in a form of IP/mask, basically something like this: 10.10.10.0/24 or, for a single host, simply an IP without anything added to it.

Marvin Rhoads
Hall of Fame
Hall of Fame

For a range that doesn't fall within a netmask boundary, just type first address-last address in the field. e.g. 192.168.1.10-192.168.1.20.

I believe ranges were introduced in 6.1.

Review Cisco Networking for a $25 gift card