Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Matthew_H_00
Participant

Is it possible to define the RegEx as a source or destination in policy

Hi All,

Would like to know is there any way that I can use RegEx format to restrict access to / from dedicated website.

As example below IP range in source 

^102\.25\.129\.([0-9]|[1-9][0-9]|1([0-9][0-9])|2([0-4][0-8]|5[0-4]))$

 

I am working with R 77.30 Gateway and R80.10 management

Many thanks,

6 Replies
HeikoAnkenbrand
Champion Champion
Champion

Hi Mahdi Haghani,

No, you can't use regex in the rules.

Regards

Heiko

➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
Matthew_H_00
Participant

Thanks Heiko,

Danny
Champion Champion
Champion

What are you trying to achive? You can simply add IP address range like this:

Matthew_H_00
Participant

Danny, thanks for reply.

I am aware of that. My situation is, the owner of requests, always sending their request in that format (RegEX) as its in compatible in multi layer devices and only in our environment for checkpoint device  I have to convert it in IP range. and sometimes its a complex and its headache for me.  

Not sure , how other people dealing with this kind of the request. Please share your experience or advise.

Thanks

Mahdi

0 Kudos
Danny
Champion Champion
Champion

I recommend writing a Bash One-liner that will output all IPs matching a RegEx, sort, delete everything between first and last IP and output the address range in a human readable format. Additionally you could advance it by directly creating an IP address range object on your SmartCenters object database.

Matthew_H_00
Participant

Thanks Danny

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events