On Thu, 24 Jan 2002, Randy Haley wrote:
> If I want to created an outbound filter for a class-c subnet where anyone in
> that subnet can get to anywhere on the Internet, if the subnet is
> 10.10.40.0, for the source ip address do I put 10.10.40.0/31?
a /31 is an invalid subnet mask. a "class c" network - 254 hosts - would
be a /24
(why is a /31 invalid? a /32 is a single address, a /30 is for a two host
network, plus the broadcast and network addresses...four address total. a
/31 could, theoreticly, be for a single host plus a broadcast and network
address...but a single host isnt a network, is it? :)
Assuming you want all 254 hosts in the 10.10.40.0/24 network to match your
filter rule, you'll need to use a /24 netmask.
...david
---
David Raistrick
Systems Administrator - Global Technology Associates, Inc
[EMAIL PROTECTED]
