Fortigate Internet Object

Worum geht es?

Fortigate bietet eine Vielzahl von Möglichkeiten Traffic Richtung Internet zu routen, Nebst statischen Routen, werden auch dynamische Objekten unterstützt, wie beispielsweise FQDN Objekte oder Internet Services.

 

Möchte man „alles“ Richtung „Internet“ routen, greift man in der Regel zu einer Default Route 0.0.0.0/0 bzw.  zu „ANY -> Zone WAN“

 

Problem?

In der Regel führt das zu keinem Problem, denn bei statischem und Policybased Routing, greift jeweils die am meist spezifischeste Route.

ZB:

10.0.0.0/8 -> 1.1.1.1
10.0.0./24 -> 1.1.1.2    <– Gewinnt gegen 10.0.0.0/8

Leider hat dies im Zusammenhand mit SD-WAN Regeln einen entscheidenen Nachteil, denn hier lassen keine Zonen angeben, somit bedeutet „ANY“ gleichzeitig auch private Subnetze, welche intern geroutet werden sollen. Auch ein Konzept von „mehr spezifisch“ gibt es hier nicht.

 

Beispiel:

show system sdwan 
config system sdwan
edit 0
set name "default_internet"
set dst "all" <-- beinhaltet lokale Subnetze
set src "all"
set priority-members 2 3
set status disable
next

Besser wäre es in diesem Fall ein reines „Internet Object“ zu haben, welches die lokalen Subnetze nicht beinhaltet.

show system sdwan 
config system sdwan
edit 0
set name "default_internet"
set dst "INTERNET" <-- beinhaltet lokale Subnetze NICHT
set src "all"
set priority-members 2 3
set status disable
next

 

Wie muss so ein Objekt aussehen?

Ein solches Objekt müsste alle IP Ranges von 0.0.0.0 bis 255.255.255.255 beinhalten, jedoch sämtliche nicht internet relevanten Adressen ausschliessen.

Um welche Ranges geht es hier?

Nebst den Klassischen privaten Address spaces:

  • Class A: 10.0. 0.0 to 10.255. 255.255.
  • Class B: 172.16. 0.0 to 172.31. 255.255.
  • Class C: 192.168. 0.0 to 192.168. 255.255.

Gibt es noch weitere special Adressen, welche nicht routebar sind:

  • 192.0.2.0/24 Assigned as TEST-NET-1, documentation and examples
  • 198.51.100.0/24 Assigned as TEST-NET-2, documentation and examples
  • 203.0.113.0/24 Assigned as TEST-NET-3, documentation and examples
  • 224.0.0.0/4 Private Multicast (Former Class D network.)

Theoretisch würde hier auch noch 127.0.0.0/8 dazu gehören, da diese jedoch aus Natur bereits nicht ausserhalb eines Geräts kommunizieren, sind sie zu vernachlässigen.

Die Schwierigkeit ist nun die Subnetze unter und oberhalb dieser Ranges so zu definieren, dass es routing technisch abgebildet werden kann.

Nachfolgende Darstellung zeigt, wie sich diese Ranges routing technisch extrahieren lassen:

Subnet address Netmask Range of addresses Useable IPs Hosts   Join
0.0.0.0/5 248.0.0.0 0.0.0.0 – 7.255.255.255 0.0.0.1 – 7.255.255.254 134217726  
8.0.0.0/7 254.0.0.0 8.0.0.0 – 9.255.255.255 8.0.0.1 – 9.255.255.254 33554430  
     10.0.0.0/8 255.0.0.0 10.0.0.0 – 10.255.255.255 10.0.0.1 – 10.255.255.254 16777214  
11.0.0.0/8 255.0.0.0 11.0.0.0 – 11.255.255.255 11.0.0.1 – 11.255.255.254 16777214  
12.0.0.0/6 252.0.0.0 12.0.0.0 – 15.255.255.255 12.0.0.1 – 15.255.255.254 67108862  
16.0.0.0/4 240.0.0.0 16.0.0.0 – 31.255.255.255 16.0.0.1 – 31.255.255.254 268435454  
32.0.0.0/3 224.0.0.0 32.0.0.0 – 63.255.255.255 32.0.0.1 – 63.255.255.254 536870910  
64.0.0.0/2 192.0.0.0 64.0.0.0 – 127.255.255.255 64.0.0.1 – 127.255.255.254 1073741822  
128.0.0.0/3 224.0.0.0 128.0.0.0 – 159.255.255.255 128.0.0.1 – 159.255.255.254 536870910  
160.0.0.0/5 248.0.0.0 160.0.0.0 – 167.255.255.255 160.0.0.1 – 167.255.255.254 134217726  
168.0.0.0/6 252.0.0.0 168.0.0.0 – 171.255.255.255 168.0.0.1 – 171.255.255.254 67108862  
172.0.0.0/12 255.240.0.0 172.0.0.0 – 172.15.255.255 172.0.0.1 – 172.15.255.254 1048574  
    172.16.0.0/12 255.240.0.0 172.16.0.0 – 172.31.255.255 172.16.0.1 – 172.31.255.254 1048574  
172.32.0.0/11 255.224.0.0 172.32.0.0 – 172.63.255.255 172.32.0.1 – 172.63.255.254 2097150  
172.64.0.0/10 255.192.0.0 172.64.0.0 – 172.127.255.255 172.64.0.1 – 172.127.255.254 4194302  
172.128.0.0/9 255.128.0.0 172.128.0.0 – 172.255.255.255 172.128.0.1 – 172.255.255.254 8388606  
173.0.0.0/8 255.0.0.0 173.0.0.0 – 173.255.255.255 173.0.0.1 – 173.255.255.254 16777214  
174.0.0.0/7 254.0.0.0 174.0.0.0 – 175.255.255.255 174.0.0.1 – 175.255.255.254 33554430  
176.0.0.0/4 240.0.0.0 176.0.0.0 – 191.255.255.255 176.0.0.1 – 191.255.255.254 268435454  
192.0.0.0/23 255.255.254.0 192.0.0.0 – 192.0.1.255 192.0.0.1 – 192.0.1.254 510  
    192.0.2.0/24 255.255.255.0 192.0.2.0 – 192.0.2.255 192.0.2.1 – 192.0.2.254 254  
192.0.3.0/24 255.255.255.0 192.0.3.0 – 192.0.3.255 192.0.3.1 – 192.0.3.254 254  
192.0.4.0/22 255.255.252.0 192.0.4.0 – 192.0.7.255 192.0.4.1 – 192.0.7.254 1022  
192.0.8.0/21 255.255.248.0 192.0.8.0 – 192.0.15.255 192.0.8.1 – 192.0.15.254 2046  
192.0.16.0/20 255.255.240.0 192.0.16.0 – 192.0.31.255 192.0.16.1 – 192.0.31.254 4094  
192.0.32.0/19 255.255.224.0 192.0.32.0 – 192.0.63.255 192.0.32.1 – 192.0.63.254 8190  
192.0.64.0/18 255.255.192.0 192.0.64.0 – 192.0.127.255 192.0.64.1 – 192.0.127.254 16382  
192.0.128.0/17 255.255.128.0 192.0.128.0 – 192.0.255.255 192.0.128.1 – 192.0.255.254 32766  
192.1.0.0/16 255.255.0.0 192.1.0.0 – 192.1.255.255 192.1.0.1 – 192.1.255.254 65534  
192.2.0.0/15 255.254.0.0 192.2.0.0 – 192.3.255.255 192.2.0.1 – 192.3.255.254 131070  
192.4.0.0/14 255.252.0.0 192.4.0.0 – 192.7.255.255 192.4.0.1 – 192.7.255.254 262142  
192.8.0.0/13 255.248.0.0 192.8.0.0 – 192.15.255.255 192.8.0.1 – 192.15.255.254 524286  
192.16.0.0/12 255.240.0.0 192.16.0.0 – 192.31.255.255 192.16.0.1 – 192.31.255.254 1048574  
192.32.0.0/11 255.224.0.0 192.32.0.0 – 192.63.255.255 192.32.0.1 – 192.63.255.254 2097150  
192.64.0.0/10 255.192.0.0 192.64.0.0 – 192.127.255.255 192.64.0.1 – 192.127.255.254 4194302  
192.128.0.0/11 255.224.0.0 192.128.0.0 – 192.159.255.255 192.128.0.1 – 192.159.255.254 2097150  
192.160.0.0/13 255.248.0.0 192.160.0.0 – 192.167.255.255 192.160.0.1 – 192.167.255.254 524286  
    192.168.0.0/16 255.255.0.0 192.168.0.0 – 192.168.255.255 192.168.0.1 – 192.168.255.254 65534  
192.169.0.0/16 255.255.0.0 192.169.0.0 – 192.169.255.255 192.169.0.1 – 192.169.255.254 65534  
192.170.0.0/15 255.254.0.0 192.170.0.0 – 192.171.255.255 192.170.0.1 – 192.171.255.254 131070  
192.172.0.0/14 255.252.0.0 192.172.0.0 – 192.175.255.255 192.172.0.1 – 192.175.255.254 262142  
192.176.0.0/12 255.240.0.0 192.176.0.0 – 192.191.255.255 192.176.0.1 – 192.191.255.254 1048574  
192.192.0.0/10 255.192.0.0 192.192.0.0 – 192.255.255.255 192.192.0.1 – 192.255.255.254 4194302  
193.0.0.0/8 255.0.0.0 193.0.0.0 – 193.255.255.255 193.0.0.1 – 193.255.255.254 16777214  
194.0.0.0/7 254.0.0.0 194.0.0.0 – 195.255.255.255 194.0.0.1 – 195.255.255.254 33554430  
196.0.0.0/7 254.0.0.0 196.0.0.0 – 197.255.255.255 196.0.0.1 – 197.255.255.254 33554430  
198.0.0.0/11 255.224.0.0 198.0.0.0 – 198.31.255.255 198.0.0.1 – 198.31.255.254 2097150  
198.32.0.0/12 255.240.0.0 198.32.0.0 – 198.47.255.255 198.32.0.1 – 198.47.255.254 1048574  
198.48.0.0/15 255.254.0.0 198.48.0.0 – 198.49.255.255 198.48.0.1 – 198.49.255.254 131070  
198.50.0.0/16 255.255.0.0 198.50.0.0 – 198.50.255.255 198.50.0.1 – 198.50.255.254 65534  
198.51.0.0/18 255.255.192.0 198.51.0.0 – 198.51.63.255 198.51.0.1 – 198.51.63.254 16382  
198.51.64.0/19 255.255.224.0 198.51.64.0 – 198.51.95.255 198.51.64.1 – 198.51.95.254 8190  
198.51.96.0/22 255.255.252.0 198.51.96.0 – 198.51.99.255 198.51.96.1 – 198.51.99.254 1022  
    198.51.100.0/24 255.255.255.0 198.51.100.0 – 198.51.100.255 198.51.100.1 – 198.51.100.254 254  
198.51.101.0/24 255.255.255.0 198.51.101.0 – 198.51.101.255 198.51.101.1 – 198.51.101.254 254  
198.51.102.0/23 255.255.254.0 198.51.102.0 – 198.51.103.255 198.51.102.1 – 198.51.103.254 510  
198.51.104.0/21 255.255.248.0 198.51.104.0 – 198.51.111.255 198.51.104.1 – 198.51.111.254 2046  
198.51.112.0/20 255.255.240.0 198.51.112.0 – 198.51.127.255 198.51.112.1 – 198.51.127.254 4094  
198.51.128.0/17 255.255.128.0 198.51.128.0 – 198.51.255.255 198.51.128.1 – 198.51.255.254 32766  
198.52.0.0/14 255.252.0.0 198.52.0.0 – 198.55.255.255 198.52.0.1 – 198.55.255.254 262142  
198.56.0.0/13 255.248.0.0 198.56.0.0 – 198.63.255.255 198.56.0.1 – 198.63.255.254 524286  
198.64.0.0/10 255.192.0.0 198.64.0.0 – 198.127.255.255 198.64.0.1 – 198.127.255.254 4194302  
198.128.0.0/9 255.128.0.0 198.128.0.0 – 198.255.255.255 198.128.0.1 – 198.255.255.254 8388606  
199.0.0.0/8 255.0.0.0 199.0.0.0 – 199.255.255.255 199.0.0.1 – 199.255.255.254 16777214  
200.0.0.0/7 254.0.0.0 200.0.0.0 – 201.255.255.255 200.0.0.1 – 201.255.255.254 33554430  
202.0.0.0/8 255.0.0.0 202.0.0.0 – 202.255.255.255 202.0.0.1 – 202.255.255.254 16777214  
203.0.0.0/18 255.255.192.0 203.0.0.0 – 203.0.63.255 203.0.0.1 – 203.0.63.254 16382  
203.0.64.0/19 255.255.224.0 203.0.64.0 – 203.0.95.255 203.0.64.1 – 203.0.95.254 8190  
203.0.96.0/20 255.255.240.0 203.0.96.0 – 203.0.111.255 203.0.96.1 – 203.0.111.254 4094  
203.0.112.0/24 255.255.255.0 203.0.112.0 – 203.0.112.255 203.0.112.1 – 203.0.112.254 254  
    203.0.113.0/24 255.255.255.0 203.0.113.0 – 203.0.113.255 203.0.113.1 – 203.0.113.254 254  
203.0.114.0/23 255.255.254.0 203.0.114.0 – 203.0.115.255 203.0.114.1 – 203.0.115.254 510  
203.0.116.0/22 255.255.252.0 203.0.116.0 – 203.0.119.255 203.0.116.1 – 203.0.119.254 1022  
203.0.120.0/21 255.255.248.0 203.0.120.0 – 203.0.127.255 203.0.120.1 – 203.0.127.254 2046  
203.0.128.0/17 255.255.128.0 203.0.128.0 – 203.0.255.255 203.0.128.1 – 203.0.255.254 32766  
203.1.0.0/16 255.255.0.0 203.1.0.0 – 203.1.255.255 203.1.0.1 – 203.1.255.254 65534  
203.2.0.0/15 255.254.0.0 203.2.0.0 – 203.3.255.255 203.2.0.1 – 203.3.255.254 131070  
203.4.0.0/14 255.252.0.0 203.4.0.0 – 203.7.255.255 203.4.0.1 – 203.7.255.254 262142  
203.8.0.0/13 255.248.0.0 203.8.0.0 – 203.15.255.255 203.8.0.1 – 203.15.255.254 524286  
203.16.0.0/12 255.240.0.0 203.16.0.0 – 203.31.255.255 203.16.0.1 – 203.31.255.254 1048574  
203.32.0.0/11 255.224.0.0 203.32.0.0 – 203.63.255.255 203.32.0.1 – 203.63.255.254 2097150  
203.64.0.0/10 255.192.0.0 203.64.0.0 – 203.127.255.255 203.64.0.1 – 203.127.255.254 4194302  
203.128.0.0/9 255.128.0.0 203.128.0.0 – 203.255.255.255 203.128.0.1 – 203.255.255.254 8388606  
204.0.0.0/6 252.0.0.0 204.0.0.0 – 207.255.255.255 204.0.0.1 – 207.255.255.254 67108862  
208.0.0.0/4 240.0.0.0 208.0.0.0 – 223.255.255.255 208.0.0.1 – 223.255.255.254 268435454  
    224.0.0.0/4 240.0.0.0 224.0.0.0 – 239.255.255.255 224.0.0.1 – 239.255.255.254 268435454  
240.0.0.0/4 240.0.0.0 240.0.0.0 – 255.255.255.255 240.0.0.1 – 255.255.255.254 268435454  

<

Code

Nachfolgender Code lässt sich auf einer Fortigate Importieren.

Adresses

config firewall address
edit "INET_0.0.0.0/5"
set subnet 0.0.0.0 248.0.0.0
next
edit "INET_8.0.0.0/7"
set subnet 8.0.0.0 254.0.0.0
next
edit "INET_11.0.0.0/8"
set subnet 11.0.0.0 255.0.0.0
next
edit "INET_12.0.0.0/6"
set subnet 12.0.0.0 252.0.0.0
next
edit "INET_16.0.0.0/4"
set subnet 16.0.0.0 240.0.0.0
next
edit "INET_32.0.0.0/3"
set subnet 32.0.0.0 224.0.0.0
next
edit "INET_64.0.0.0/2"
set subnet 64.0.0.0 192.0.0.0
next
edit "INET_128.0.0.0/3"
set subnet 128.0.0.0 224.0.0.0
next
edit "INET_160.0.0.0/5"
set subnet 160.0.0.0 248.0.0.0
next
edit "INET_168.0.0.0/6"
set subnet 168.0.0.0 252.0.0.0
next
edit "INET_172.0.0.0/12"
set subnet 172.0.0.0 255.240.0.0
next
edit "INET_172.32.0.0/11"
set subnet 172.32.0.0 255.240.0.0
next
edit "INET_172.64.0.0/10"
set subnet 172.64.0.0 255.192.0.0
next
edit "INET_172.128.0.0/9"
set subnet 172.128.0.0 255.128.0.0
next
edit "INET_173.0.0.0/8"
set subnet 173.0.0.0 255.0.0.0
next
edit "INET_174.0.0.0/7"
set subnet 174.0.0.0 254.0.0.0
next
edit "INET_176.0.0.0/4"
set subnet 176.0.0.0 240.0.0.0
next
edit "INET_192.128.0.0/11"
set subnet 192.128.0.0 255.224.0.0
next
edit "INET_192.160.0.0/13"
set subnet 192.160.0.0 255.248.0.0
next
edit "INET_192.169.0.0/16"
set subnet 192.169.0.0 255.255.0.0
next
edit "INET_192.170.0.0/15"
set subnet 192.170.0.0 255.254.0.0
next
edit "INET_192.172.0.0/14"
set subnet 192.172.0.0 255.252.0.0
next
edit "INET_192.176.0.0/12"
set subnet 192.176.0.0 255.240.0.0
next
edit "INET_192.192.0.0/10"
set subnet 192.192.0.0 255.192.0.0
next
edit "INET_192.0.0.0/23"
set subnet 192.0.0.0 255.255.254.0
next
edit "INET_192.0.3.0/24"
set subnet 192.0.3.0 255.255.255.0
next
edit "INET_192.0.4.0/22"
set subnet 192.0.4.0 255.255.252.0
next
edit "INET_192.0.8.0/21"
set subnet 192.0.8.0 255.255.248.0
next
edit "INET_192.0.16.0/20"
set subnet 192.0.16.0 255.255.240.0
next
edit "INET_192.0.32.0/19"
set subnet 192.0.32.0 255.255.224.0
next
edit "INET_192.0.64.0/18"
set subnet 192.0.64.0 255.255.192.0
next
edit "INET_192.0.128.0/17"
set subnet 192.0.128.0 255.255.128.0
next
edit "INET_192.1.0.0/16"
set subnet 192.1.0.0 255.255.0.0
next
edit "INET_192.2.0.0/15"
set subnet 192.2.0.0 255.254.0.0
next
edit "INET_192.4.0.0/14"
set subnet 192.4.0.0 255.252.0.0
next
edit "INET_192.8.0.0/13"
set subnet 192.8.0.0 255.248.0.0
next
edit "INET_192.16.0.0/12"
set subnet 192.16.0.0 255.240.0.0
next
edit "INET_192.32.0.0/11"
set subnet 192.32.0.0 255.224.0.0
next
edit "INET_192.64.0.0/10"
set subnet 192.0.0.0 255.128.0.0
next
edit "INET_193.0.0.0/8"
set subnet 193.0.0.0 255.0.0.0
next
edit "INET_194.0.0.0/7"
set subnet 194.0.0.0 254.0.0.0
next
edit "INET_196.0.0.0/7"
set subnet 196.0.0.0 252.0.0.0
next
edit "INET_198.0.0.0/11"
set subnet 198.0.0.0 255.224.0.0
next
edit "INET_198.32.0.0/12"
set subnet 198.32.0.0 255.240.0.0
next
edit "INET_198.48.0.0/15"
set subnet 198.48.0.0 255.254.0.0
next
edit "INET_198.50.0.0/16"
set subnet 198.50.0.0 255.255.0.0
next
edit "INET_198.51.0.0/18"
set subnet 198.51.0.0 255.255.192.0
next
edit "INET_198.51.64.0/19"
set subnet 198.51.64.0 255.255.224.0
next
edit "INET_198.51.96.0/22"
set subnet 198.51.96.0 255.255.252.0
next
edit "INET_198.51.101.0/24"
set subnet 198.51.101.0 255.255.255.0
next
edit "INET_198.51.102.0/23"
set subnet 198.51.102.0 255.255.254.0
next
edit "INET_198.51.104.0/21"
set subnet 198.51.104.0 255.255.248.0
next
edit "INET_198.51.112.0/20"
set subnet 198.51.112.0 255.255.240.0
next
edit "INET_198.51.128.0/17"
set subnet 198.51.128.0 255.255.128.0
next
edit "INET_198.52.0.0/14"
set subnet 198.52.0.0 255.252.0.0
next
edit "INET_198.56.0.0/13"
set subnet 198.56.0.0 255.248.0.0
next
edit "INET_198.64.0.0/10"
set subnet 198.64.0.0 255.192.0.0
next
edit "INET_198.128.0.0/9"
set subnet 198.128.0.0 255.128.0.0
next
edit "INET_199.0.0.0/8"
set subnet 199.0.0.0 255.0.0.0
next
edit "INET_200.0.0.0/7"
set subnet 200.0.0.0 254.0.0.0
next
edit "INET_202.0.0.0/8"
set subnet 202.0.0.0 255.0.0.0
next
edit "INET_203.0.0.0/18"
set subnet 203.0.0.0 255.255.192.0
next
edit "INET_203.0.64.0/19"
set subnet 203.0.64.0 255.255.224.0
next
edit "INET_203.0.96.0/20"
set subnet 203.0.96.0 255.255.240.0
next
edit "INET_203.0.112.0/24"
set subnet 203.0.112.0 255.255.255.0
next
edit "INET_203.0.114.0/23"
set subnet 203.0.114.0 255.255.254.0
next
edit "INET_203.0.116.0/22"
set subnet 203.0.116.0 255.255.252.0
next
edit "INET_203.0.120.0/21"
set subnet 203.0.120.0 255.255.248.0
next
edit "INET_203.0.128.0/17"
set subnet 203.0.128.0 255.255.128.0
next
edit "INET_203.1.0.0/16"
set subnet 203.1.0.0 255.255.0.0
next
edit "INET_203.2.0.0/15"
set subnet 203.2.0.0 255.254.0.0
next
edit "INET_203.4.0.0/14"
set subnet 203.4.0.0 255.252.0.0
next
edit "INET_203.8.0.0/13"
set subnet 203.8.0.0 255.248.0.0
next
edit "INET_203.16.0.0/12"
set subnet 203.16.0.0 255.240.0.0
next
edit "INET_203.32.0.0/11"
set subnet 203.32.0.0 255.224.0.0
next
edit "INET_203.64.0.0/10"
set subnet 203.64.0.0 255.192.0.0
next
edit "INET_203.128.0.0/9"
set subnet 203.128.0.0 255.128.0.0
next
edit "INET_204.0.0.0/6"
set subnet 204.0.0.0 252.0.0.0
next
edit "INET_208.0.0.0/4"
set subnet 208.0.0.0 240.0.0.0
next
edit "INET_240.0.0.0/3"
set subnet 240.0.0.0 240.0.0.0
end
end

Address Group

config firewall addrgrp
edit "INTERNET"
set member "INET_240.0.0.0/3" "INET_0.0.0.0/5" "INET_11.0.0.0/8" "INET_12.0.0.0/6" "INET_128.0.0.0/3" "INET_16.0.0.0/4" "INET_160.0.0.0/5" "INET_168.0.0.0/6" "INET_172.0.0.0/12" "INET_172.128.0.0/9" "INET_172.32.0.0/11" "INET_172.64.0.0/10" "INET_173.0.0.0/8" "INET_174.0.0.0/7" "INET_176.0.0.0/4" "INET_192.128.0.0/11" "INET_192.160.0.0/13" "INET_192.169.0.0/16" "INET_192.170.0.0/15" "INET_192.172.0.0/14" "INET_192.176.0.0/12" "INET_192.192.0.0/10" "INET_193.0.0.0/8" "INET_194.0.0.0/7" "INET_208.0.0.0/4" "INET_32.0.0.0/3" "INET_64.0.0.0/2" "INET_8.0.0.0/7" "INET_192.0.0.0/23" "INET_192.0.128.0/17" "INET_192.0.16.0/20" "INET_192.0.3.0/24" "INET_192.0.32.0/19" "INET_192.0.4.0/22" "INET_192.0.64.0/18" "INET_192.0.8.0/21" "INET_192.1.0.0/16" "INET_192.16.0.0/12" "INET_192.2.0.0/15" "INET_192.32.0.0/11" "INET_192.4.0.0/14" "INET_192.64.0.0/10" "INET_192.8.0.0/13" "INET_196.0.0.0/7" "INET_198.0.0.0/11" "INET_198.128.0.0/9" "INET_198.32.0.0/12" "INET_198.48.0.0/15" "INET_198.50.0.0/16" "INET_198.51.0.0/18" "INET_198.51.101.0/24" "INET_198.51.102.0/23" "INET_198.51.104.0/21" "INET_198.51.112.0/20" "INET_198.51.128.0/17" "INET_198.51.64.0/19" "INET_198.51.96.0/22" "INET_198.52.0.0/14" "INET_198.56.0.0/13" "INET_198.64.0.0/10" "INET_199.0.0.0/8" "INET_200.0.0.0/7" "INET_202.0.0.0/8" "INET_203.0.0.0/18" "INET_203.0.112.0/24" "INET_203.0.114.0/23" "INET_203.0.116.0/22" "INET_203.0.120.0/21" "INET_203.0.128.0/17" "INET_203.0.64.0/19" "INET_203.0.96.0/20" "INET_203.1.0.0/16" "INET_203.128.0.0/9" "INET_203.16.0.0/12" "INET_203.2.0.0/15" "INET_203.32.0.0/11" "INET_203.4.0.0/14" "INET_203.64.0.0/10" "INET_203.8.0.0/13" "INET_204.0.0.0/6"
set comment "Includes all public Subnet without private networks and RFC non routable IPs"
set color 6
next
end

 

Samuel Heinrich
Senior Network Engineer at Selution AG (Switzerland)
Arbeitet in Raum Basel (Switzerland) als Senior Network Engineer mit über 15 Jahren Erfahrung im Bereich Netzwerk

Schreibe einen Kommentar

Deine E-Mail-Adresse wird nicht veröffentlicht. Erforderliche Felder sind mit * markiert

Diese Website verwendet Akismet, um Spam zu reduzieren. Erfahre mehr darüber, wie deine Kommentardaten verarbeitet werden.