Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
214
Views
0
Helpful
1
Replies

Query with conduit statement

pteal
Level 1
Level 1

‎08-08-2002 03:10 AM - edited ‎03-08-2019 11:52 PM

Hi

Please can some one help. I am trying to setup a conduit statement that will allow a number of devices to talk to a single address in a DMZ. The addresses start at 192.168.1.21 and go upto 192.168.1.40.

How do I summarise these addresses into a single conduit. The address they need to talk to is 192.168.1.9

conduit permit ????? tcp 1494 host 192.168.1.9

Can some one help me fill in the ????? section

Thanks for your help

Labels:
0 Helpful
1 Reply 1

pgolding
Level 1
Level 1

‎08-12-2002 06:36 PM

this address range cant be completely summarised with one entry, so what you can do is -

conduit permit tcp host 192.168.1.9 eq 1494 192.168.1.16 255.255.255.240

which will cover the range 192.168.1.16 through 192.168.1.31, then add smaller subnet permit statements for the other addresses. alternatively use one conduit statement for each address in the range.

we recommend using access lists over conduits.

0 Helpful
Customers Also Viewed These Support Documents