How do block a range of ip's via PDM on PIX 501

Answered Question
May 12th, 2009
User Badges:

I need to block a range of ip's, 123.8.0.0 to 123.15.255.255. How do I do that?

Correct Answer by John Blakley about 7 years 10 months ago

That's correct. And I made a mistake because the PIX doesn't use inverted masks, so it would be:


123.8.0.0 255.248.0.0


John

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
John Blakley Tue, 05/12/2009 - 10:46
User Badges:
  • Purple, 4500 points or more

You can create an acl like:


access-list BLOCKED deny ip 123.8.0.0 0.7.255.255 any


This will cover you from 123.8.0.1 - 123.15.255.254.


HTH,

John

jwbutler123 Tue, 05/12/2009 - 12:23
User Badges:

If i'm using the PDM I assume 123.8.0.0 would be the ip and 0.7.255.255 would be the mask. Is my assumption correct?

Correct Answer
John Blakley Tue, 05/12/2009 - 12:25
User Badges:
  • Purple, 4500 points or more

That's correct. And I made a mistake because the PIX doesn't use inverted masks, so it would be:


123.8.0.0 255.248.0.0


John

Actions

This Discussion