locked
What is a catch all IP range for the UAG install? RRS feed

  • Question

  • Hi

    For the initial UAG config wizard an IP range needs to be defined - what is the largest IP range possible to put here?

    Thanks,

    Thursday, January 31, 2013 5:31 PM

Answers

  • Hi,

    do you meand the IP range for the internal Network?

    if yes, you should only include the ranges on the internal Network.

    That means, everything which is reachable via the internal Network Interface (directly attached or also Network which can be reached via a defined route)

    hope this helps?

    Best regards,

    Markus


    SecureGUARD GmbH ( http://www.secureguard.at )

    • Marked as answer by xyz2012 Wednesday, February 6, 2013 6:17 PM
    Friday, February 1, 2013 8:47 AM
  • To further add to Markus comment, adding for instance 10.0.0.0/8 as the internal network and you only use 10.9.8.0/24 and no routes are defined for the rest of the available address space will generate 14147 events in the eventlog.

    The morale of the story is to keep it clean. E.g. if you have

    10.9.8.0/24 as the internal network UAG is attached to and 10.1.2.0/24 as a network behind a internal router, then those are the networks you should define. You also need to define a static route for the latter. Supernetting is ok as long as you define routes for all networks.


    Hth, Anders Janson Enfo Zipper

    • Marked as answer by xyz2012 Wednesday, February 6, 2013 6:17 PM
    Friday, February 1, 2013 9:35 AM

All replies

  • Hi,

    do you meand the IP range for the internal Network?

    if yes, you should only include the ranges on the internal Network.

    That means, everything which is reachable via the internal Network Interface (directly attached or also Network which can be reached via a defined route)

    hope this helps?

    Best regards,

    Markus


    SecureGUARD GmbH ( http://www.secureguard.at )

    • Marked as answer by xyz2012 Wednesday, February 6, 2013 6:17 PM
    Friday, February 1, 2013 8:47 AM
  • To further add to Markus comment, adding for instance 10.0.0.0/8 as the internal network and you only use 10.9.8.0/24 and no routes are defined for the rest of the available address space will generate 14147 events in the eventlog.

    The morale of the story is to keep it clean. E.g. if you have

    10.9.8.0/24 as the internal network UAG is attached to and 10.1.2.0/24 as a network behind a internal router, then those are the networks you should define. You also need to define a static route for the latter. Supernetting is ok as long as you define routes for all networks.


    Hth, Anders Janson Enfo Zipper

    • Marked as answer by xyz2012 Wednesday, February 6, 2013 6:17 PM
    Friday, February 1, 2013 9:35 AM
  • Yes I did mean the internal range...
    Wednesday, February 6, 2013 6:16 PM
  • ok thanks.
    Wednesday, February 6, 2013 6:18 PM