cancel
Showing results for 
Search instead for 
Did you mean: 
Create a Post

Is it possible to define the RegEx as a source or destination in policy

Hi All,

Would like to know is there any way that I can use RegEx format to restrict access to / from dedicated website.

As example below IP range in source 

^102\.25\.129\.([0-9]|[1-9][0-9]|1([0-9][0-9])|2([0-4][0-8]|5[0-4]))$

 

I am working with R 77.30 Gateway and R80.10 management

Many thanks,

6 Replies

Re: Is it possible to define the RegEx as a source or destination in policy

Hi Mahdi Haghani,

No, you can't use regex in the rules.

Regards

Heiko

Re: Is it possible to define the RegEx as a source or destination in policy

Thanks Heiko,

Danny
Pearl

Re: Is it possible to define the RegEx as a source or destination in policy

What are you trying to achive? You can simply add IP address range like this:

Re: Is it possible to define the RegEx as a source or destination in policy

Danny, thanks for reply.

I am aware of that. My situation is, the owner of requests, always sending their request in that format (RegEX) as its in compatible in multi layer devices and only in our environment for checkpoint device  I have to convert it in IP range. and sometimes its a complex and its headache for me.  

Not sure , how other people dealing with this kind of the request. Please share your experience or advise.

Thanks

Mahdi

0 Kudos
Highlighted
Danny
Pearl

Re: Is it possible to define the RegEx as a source or destination in policy

I recommend writing a Bash One-liner that will output all IPs matching a RegEx, sort, delete everything between first and last IP and output the address range in a human readable format. Additionally you could advance it by directly creating an IP address range object on your SmartCenters object database.

Re: Is it possible to define the RegEx as a source or destination in policy

Thanks Danny

0 Kudos