Subnet
A subnet address object is usually used to refer internal networks or addresses which are defined by the network administrator.
A subnet address usually consists of a network address and a netmask, for example, 192.168.1.0 255.255.255.0. In this example, the network address is 192.168.1.0 and the netmask is 255.255.255.0. The network address defines the network to match and the netmask specify the IP address to match on the network.
In the above example, the subnet address 192.168.1.0 255.255.255.0 would match the following IP addresses:
192.168.1.1 192.168.1.2 192.168.1.3 ... 192.168.1.255
For defining a subnet address object the valid format of IP address and netmask could be either:
x.x.x.x/x.x.x.x
, such as 192.168.1.0/255.255.255.0
or
x.x.x.x/x
, such as 192.168.1.0/24
To define a single address using subnet, use the netmask 255.255.255.255 or /32. A warning message will be shown if any other netmask is used and will not let the user save the address object. |
To create a subnet address:
-
Go to Policy & Objects > Addresses and select Address.
-
Select Create new.
-
Enter a Name for the address object.
-
In the Type field, select Subnet from the dropdown menu.
-
In the IP/Netmask field, enter the address and subnet mask according to the format x.x.x.x/x.x.x.x or the short hand format of x.x.x.x/x
-
In the Interface field, leave as the default any or select a specific interface from the dropdown menu.
-
Enable/disable Static route configuration.
-
Enter any additional information in the Comments field.
-
Click OK.