cancel
Showing results for 
Search instead for 
Did you mean: 
trevorw2000
Level 10

IP Addresses with Subnet Masks

I'm working on a trial version of Web Gateway 7 with the hope of converting over from Bluecoat.  For right now I'm simply trying to duplicate Bluecoat's logic layers for the most part.  I have two issues that I'm sure are easily handled but I'm hoping I can get  some help.

I have a list of source IP addresses that I want to explicitely allow unrestricted access without authentication.  I was trying to put a Top Level Rule Set in place before anything else is processed and link it to Client.IP.  The problem is there are some addresses that are single IPs, which Bluecoat allowed us to enter as 192.168.1.1/255.255.255.255  (masking down to that one IP).  We also have others that are that are an entire subnet, such as 192.168.1.0/255.255.255.0.

On that same token, I have a similar issue with some allowed destination IPs.  Most of them are explicit and just a single IP, but some of them are again masked similar to 192.168.1.0/255.255.255.0.

Any help would be greatly appreciated and please forgive my lack of knowledge of the product.  Like I said, I'm working on a proof of concept to pitch for a transition from another product and I haven't had a chance to even find documentation to read.

Thanks,

Trevor

0 Kudos
2 Replies
McAfee Employee

Re: IP Addresses with Subnet Masks

This is quite easy to do as you described.

Client.IP is in range (or list) 192.168.1.1/255.255.255.255 (alternativley 192.168.1.1/32).

The same applies to URL.Destination.IP.

What problems were you experiencing specifcally? Were you just wondering the property names?

7.3 Product guide can be found here:

https://kc.mcafee.com/corporate/index?page=content&id=PD24047

Best,

Jon

0 Kudos
trevorw2000
Level 10

Re: IP Addresses with Subnet Masks

Thanks for your response, Jon.  I wouldn't say that I was having problems necessarily...I just had some questions in regards to how to best translate a Bluecoat rule to McAfee.  Because we're racing against a clock for the trial and the end of our agreement with Bluecoat I figured I'd check here for assistance with a few questions.  Thanks for the link to the documentation.  I have a feeling that will be incredibly helpful with the rest of the configuration process!

Trevor

0 Kudos