Cisco2Checkpoint icon indicating copy to clipboard operation
Cisco2Checkpoint copied to clipboard
verified publisher icon GoSecure

wildcard mask while ASA syntax

Open iceoeu opened this issue 8 years ago • 6 comments

Hello,

I got wildcard mask in access list while use ASA syntax. It should not be wildcard for ASA! Please, correct it!

I discover one more problem. It do not undestand the follow: name 172.16.1.0 kino access-list oleg_list extended permit ip 192.168.1.0 255.255.255.0 kino 255.255.255.0

The result is: modify network_objects N_kino-24 ipaddr kino

Best regards, Oleg

iceoeu avatar Aug 13 '17 15:08 iceoeu

It change mask to wildcard.

create network N_192.168.1.0-8 modify network_objects N_192.168.1.0-8 ipaddr 192.168.1.0 modify network_objects N_192.168.1.0-8 netmask 0.0.0.255 modify network_objects N_192.168.1.0-8 comments "" modify network_objects N_192.168.1.0-8 color "black" update network_objects N_192.168.1.0-8

iceoeu avatar Aug 13 '17 15:08 iceoeu

A little correction: 'sip' : '5060 5061' ->'sip' : '5060-5061'

iceoeu avatar Aug 13 '17 18:08 iceoeu

In config.py

iceoeu avatar Aug 13 '17 18:08 iceoeu

I disable hostmask2netmask to avoid wildcard mask for asa.

iceoeu avatar Aug 27 '17 20:08 iceoeu

I discover duplicate host if there is a host in ACL.

iceoeu avatar Aug 27 '17 20:08 iceoeu

It does not recognized ' service-object udp range'.

iceoeu avatar Aug 28 '17 14:08 iceoeu