Blacklists: ASA5510 / botnet filter

Unanswered Question
Oct 23rd, 2009
User Badges:

I am testing IP blacklists through the botnet filter.


If I try to add:

62.5.128.0/17


to the blacklist - I get the error message 'The netmask is not valid'. Can anyone explain that? I mean, that is a valid netmask is it not?



**oops. Misposted in wrong forum. I will repost in security forum. Sorry.**


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Yudong Wu Fri, 10/23/2009 - 13:39
User Badges:
  • Gold, 750 points or more

can you try to use "255.255.128.0" instead of "/17".

congressgroup Fri, 10/23/2009 - 14:11
User Badges:

no.. it will not take that format. It specifically calls (Through ASDM that is) for


1) hostname

2) specific IP

3) net mask in 10.10.20.0/24 format.


I am starting to think it will only take masks on major octets, like /8 /16 and /24 and the corresponding octets must be zero.


it will take:

62.5.0.0/16


or:

62.5.128.0/24


but not:

62.5.128.0/17

Actions

This Discussion