Hi:
We're running Astaro FW 7.509 and I manage a running whitelist of IP's that allows them to access a single specific server. Normally, to add a new IP to the list, I go to Definitions -> Networks and edit the network group; from there I add a new entry, save it and then log out.
I currently have 70 entries in a single network group.
Yesterday, I received a call from a client who was unable to log into the webserver stating that their browser was "unable to display the webpage" - these errors always indicate that they had either given me the wrong IP to whitelist or I had forgotten to add it. So I logged onto the firewall and scanned all of the network definitions for the entry I knew I had made - I didn't check the actual network group at this point - and immediately found the entry. So after more back and forth with the client, I start going through the firewall logs and find that their IP is being dropped while trying to use port 443.
Once more, I go back to the network definitions and this time actually look at the network group and sure enough, there was no entry. It was if it had been bumped off the list. Their entry was made only a couple days ago and I had added one more since then and *it* was on the list. And I must point out again that I ALWAYS add new hosts to this network group by editing it first and creating a new entry that way. The network definition existed, it had just been removed from the list. [:S]
So my question is: is there a limit to how many hosts you can add to a network group definition? I don't want to have to create multiple network groups for this whitelist, but if I have to, then so be it; I just want to know for my own records.
Thanks in advance!
- A.
This thread was automatically locked due to age.
