Slash notation, aliases and multiple networks

awsiemieniec · Oct 16, 2017, 8:03 PM

I have a smarthost that sends me email from any server within a IP in a /22 block of IPs. Same smart host has another subnet that needs to send me emails in a /27 block of IPs. My firewall alias is setup with two networks defined: xxx.xxx.xxx.xxx/22 and yyy.yyy.yyy.yyy/27.

Now in another alias I want to reference the already defined (above) alias but I have to give it a slash notation, too, since this alias is made up of networks, too. What would the correct slash notation be for adding the the /22 and /27 networks in the alias made of up of other aliases? … i'm not doing a good job of explaining the problem so maybe below example will help:

smarthost_alias:
xxx.xxx.xxx.xxx/22
yyy.yyy.yyy.yyy/27

Accept_Mail_From_alias:
smarthost_alias/???
client_A/32
client_B/32
etc...

Thanks.

Aaron ???

awsiemieniec · Oct 16, 2017, 8:17 PM

I'm guessing a /21

A /22 has 1024 IPs
A /27 has 32 IPs

If I want to capture all 1056 IPs, the closest slash notation would a /21 which has 2048 IPs.

Just a guess.
???

jimp · Oct 16, 2017, 8:47 PM

when you nest aliases, the CIDR is ignored on that line.

Just enter the alias name, it will figure out the rest internally.