will FW rule on /24 match on an ip range of the broader /16

toxic · January 23, 2021, 11:52:17 PM

I'm trying to find a simple way to apply a firewall rule to a range of IPs.
Say my FW interface is set to 10.0.0.1/16 and client A is 10.0.1.55/16 and client B is 10.0.2.55/16
If I add a FW rule to apply on source 10.0.1.0/24 will it match traffic from client A and not from client B ? Or will it not match traffic from client A since netmask is different?

I'm trying to find a reasonable way to apply FW rules to a range of IP, maybe that's na option somewhere else that I didn't find yet.
Thanks in advance for your kind help.

Fright · January 24, 2021, 06:52:04 AM

should work

toxic · January 24, 2021, 11:27:14 AM

Thanks !

will FW rule on /24 match on an ip range of the broader /16

toxic

January 23, 2021, 11:52:17 PM

Fright

January 24, 2021, 06:52:04 AM #1

toxic

January 24, 2021, 11:27:14 AM #2