Security Basics mailing list archives

Re: Iptables and multiple ip ranges

From: "ME" <dugan () passwall com>
Date: Tue, 17 Dec 2002 09:34:12 -0800 (PST)

It can be done with ip netmask...
(multiple entries)

Learn about subnetting, and you can build your own with multiple entries:

192.168.0.32/255.255.255.248 covers 32-63
192.168.0.28/255.255.255.192 covers 28-31
192.168.0.27/255.255.255.255 covers the last host

(Of course there is often more than one way to do things.)

In the iptables man page, check out the section
"--to-source  ipaddr[-ipaddr][:port-port]
      which  can  specify a single new source IP address,
      an inclusive range of IP addresses,..."

You could have also found this in the man page doing  search on "range".

Enjoy!
-ME


Ignacio Bernal said:

I'm trying to configure a linux firewall using iptables, to use non
uniform ip ranges like :

192.168.0.27-192.168.0.63

... that could not be defined using the ip/mask syntax. I wonder to know
if that can be done, and how.

Thanks.

I

Current thread:

Iptables and multiple ip ranges Ignacio Bernal (Dec 17)
- Re: Iptables and multiple ip ranges ME (Dec 18)
- Re: Iptables and multiple ip ranges Devdas Bhagat (Dec 18)
- Re: Iptables and multiple ip ranges phani (Dec 18)