Access List

Need some quick help.

I need to block off certain range of ips...say 10.0.5.36-.254

Is there a easy way to do this?

With lack of meat to your question all I can say is use a firewall but that would be silly to say that because you’re in the Firewall forum so you knew enough to know what a firewall is and can do.

All I can suggest at this time is refer to the picture below and good luck.

Hmmm ... somehow I dont think that particular access-list will work for nubs .. unless of course you know something we don't!

Nubs, mind giving us a bit more information? What o/s or device are we talking about ?


Cheers,

I figure he's talking cisco.. but I really dont have the energy to work out the wildcard mask for the range he's talking about.. anyone care to do the binary math (or share a simpler method with me ?)

sorry bout that, I had a few seconds to write this up

Yea, Sahir is right, access lists on the router....binaries would be good

Briefly..
the access list mask you use is the binary opposite of the s/n mask you would use.. ie

255.255.255.0 = 11111111.11111111.11111111.00000000
so the a/l mask = 00000000.00000000.00000000.11111111
= 0.0.0.255

if the s/n mask is 255.255.255.240 = 11111111.11111111.11111111.11110000

a/l mask
00000000.00000000.00000000.00001111 (convert zero to one)

therefore 0.0.0.15

simple ?