[Question] question with rules

i need block request from a range of ip to another ip.
I write this , but when i turn on the accept one, i can do any request of any ips.

The question is, why if i write x.8; the rule accept x.7 ip?

accept
ipsrc 10.1.1.8/24
and ipdest 10.1.1.1/24
;

drop
ipsrc 10.1.1.0/24
and ipdest 10.1.1.1/24
;

Hi.
Yes, that’s not right.
What is the IP range you want to drop and which one you want to accept?

Thank you!
When i write:
x.8 its mean= 10.1.1.8 or x.14 mean 10.1.1.14
x.6-10 mean 10.1.1.6 to 10.1.1.10


x.1-5 have 22 ssh and 443 https service

x.8 can consume ssh and https from x.5
x.6-10 can consume ssh and https from x.1-4
x.11-15 can consume https from x.1-4
x.11-15 can consume ssh from x.3-4
x.16-20 can consume https from x.3-4

I hope u can help me!

Thanks again!

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.