Is it possible to define the RegEx as a source or ...

Matthew_H_00 · ‎2019-01-28

Hi All,

Would like to know is there any way that I can use RegEx format to restrict access to / from dedicated website.

As example below IP range in source

^102\.25\.129\.([0-9]|[1-9][0-9]|1([0-9][0-9])|2([0-4][0-8]|5[0-4]))$

I am working with R 77.30 Gateway and R80.10 management

Many thanks,

HeikoAnkenbrand · ‎2019-01-29

Hi Mahdi Haghani,

No, you can't use regex in the rules.

Regards

Heiko

Matthew_H_00 · ‎2019-01-31

Thanks Heiko,

Danny · ‎2019-01-29

What are you trying to achive? You can simply add IP address range like this:

Matthew_H_00 · ‎2019-01-29

Danny, thanks for reply.

I am aware of that. My situation is, the owner of requests, always sending their request in that format (RegEX) as its in compatible in multi layer devices and only in our environment for checkpoint device I have to convert it in IP range. and sometimes its a complex and its headache for me.

Not sure , how other people dealing with this kind of the request. Please share your experience or advise.

Thanks

Mahdi

Danny · ‎2019-01-29

I recommend writing a Bash One-liner that will output all IPs matching a RegEx, sort, delete everything between first and last IP and output the address range in a human readable format. Additionally you could advance it by directly creating an IP address range object on your SmartCenters object database.

Matthew_H_00 · ‎2019-01-31

Thanks Danny

Is it possible to define the RegEx as a source or destination in policy

Policy Installation

SmartConsole