Quick Question about Network Block

Question

Should be easy answer, I just want to confirm if I am doing this right as I've started a new UTM from scratch and couldn't transfer over my definitions due to hardware change. 
 I regularly get ranges of IPs which although coming from specific countries, evade country filtering and rotate IPs to brute force. I have a firewall rule and an underlying network definition that I use called known attackers to block at the firewall layer; I also use this definition in NAT and email protection. Instead of entering individual IPs I normally create a subsequent definition in known attackers with the type network and enter the IPs in the style of 192.168.1.0 and subnetmask 255.255.255.0 with the final octet a zero to denote the entire range. Is this correct, or should I be using the range definition and setting 192.168.1.1 - 192.168.1.255? 
 Thanks, 
 Jared

dirk privat · Accepted Answer

first: you should be able to transfer your config to new hardware. Possible you have to reorder the interfaces afterwards. You need a new license if hardware type changes ... afterwards too. 
 you may use a range definition or a subnet definition. booth should work.

BAlfson · Answer

Hi Jared and welcome to the UTM Community! 
 Dirk is correct. There's no reason for the restore to not work as long as you subsequently upload the license file. 
 My guess is that you restored the backup separately to the two SGs and that will cause strange problems. Here are the instructions I give to my clients: 
 
 If needed, do quick, temporary installs so that the new devices can download Up2Dates, apply the desired Up2Dates (all the way to 9.705), do a factory reset and power both units off. If the new units are at the same level or higher than the current UTMs, this step is unnecessary. 
 Create a backup and load it onto a USB memory stick. 
 With the USB memory stick in place, power up the device that will begin as the new Master and remove the memory stick after the boot is complete. 
 Connect a PC to the new Master and upload the license for the new SG, leaving the new Master powered up. 
 Verify that the configuration on the new SG Master is correct (The ports and interfaces could potentially be in a different order, re-configure them as necessary), and then disconnect the PC. 
 Power down the current UTM Slave and move its cables to the new SG Slave which remains powered down. 
 Power down the current UTM Master and move the cables to the new SG Master. 
 Wait for the new SG Master to be READY. 
 Power up the new SG Slave. Done. 
 
 Any better luck with that? 
 Cheers - Bob

Quick Question about Network Block

Top Replies