Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Access List

Access List 12 years 7 months ago #3441

  • nubs
  • nubs's Avatar
  • Offline
  • Frequent Member
  • Posts: 20
  • Karma: 0
Need some quick help.

I need to block off certain range of ips...say 10.0.5.36-.254

Is there a easy way to do this?
The administrator has disabled public write access.

Re: Access List 12 years 7 months ago #3442

  • Jack
  • Jack's Avatar
  • Offline
  • Senior Member
  • Posts: 242
  • Karma: 0
With lack of meat to your question all I can say is use a firewall but that would be silly to say that because you’re in the Firewall forum so you knew enough to know what a firewall is and can do.

All I can suggest at this time is refer to the picture below and good luck. :)

Jack Burgess,
Firewall.cx Staff
News Editor / Forum Moderator
www.jacksjunk.com
The administrator has disabled public write access.

Re: Access List 12 years 7 months ago #3446

  • Chris
  • Chris's Avatar
  • Offline
  • Administrator
  • Posts: 1446
  • Thank you received: 13
  • Karma: 8
Hmmm ... somehow I dont think that particular access-list will work for nubs .. unless of course you know something we don't!

Nubs, mind giving us a bit more information? What o/s or device are we talking about ?


Cheers,
Chris Partsenidis.
Founder & Editor-in-Chief
www.Firewall.cx
The administrator has disabled public write access.

Re: Access List 12 years 7 months ago #3449

  • sahirh
  • sahirh's Avatar
  • Offline
  • Honored Member
  • Posts: 1700
  • Karma: 0
I figure he's talking cisco.. but I really dont have the energy to work out the wildcard mask for the range he's talking about.. anyone care to do the binary math (or share a simpler method with me ?)
Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
The administrator has disabled public write access.

Re: Access List 12 years 7 months ago #3453

  • nubs
  • nubs's Avatar
  • Offline
  • Frequent Member
  • Posts: 20
  • Karma: 0
sorry bout that, I had a few seconds to write this up

Yea, Sahir is right, access lists on the router....binaries would be good :)
The administrator has disabled public write access.

Re: Access List 12 years 7 months ago #3454

  • sahirh
  • sahirh's Avatar
  • Offline
  • Honored Member
  • Posts: 1700
  • Karma: 0
Briefly..
the access list mask you use is the binary opposite of the s/n mask you would use.. ie

255.255.255.0 = 11111111.11111111.11111111.00000000
so the a/l mask = 00000000.00000000.00000000.11111111
= 0.0.0.255

if the s/n mask is 255.255.255.240 = 11111111.11111111.11111111.11110000

a/l mask
00000000.00000000.00000000.00001111 (convert zero to one)

therefore 0.0.0.15

simple ?
Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
The administrator has disabled public write access.
Time to create page: 0.089 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup