This is related to the solved thread at:
https://www-secure.symantec.com/connect/forums/quick-custom-ips-assist-please
where thatdude helped solve the immediate issue.
Now a new issue has cropped up in the SAME area. Thanks to the great FAST help in the above thread, I was able to allow a computer access to a specific site that was otherwise blocked. NOW, I need to allow access to multiple computers - 4 of them in total. Not a whole IP range, and in fact, 2 of the computers are on one subnet, 2 are on another.
I know/understand I can allow a range by doing rule tcp, dest=(80,443), saddr=(123.456.789.32/27), msg="Allow Facebook",content="facebook.com" and allow all of the PCs in the 123.456.789.32 subnet access using that rule BELOW the block rule.
CAN I DO THIS:
rule tcp, dest=(80,443), saddr=(111.222.333.97/32,111.222.333.99/32,111.222.111.91/32,111.222.111.93/32), msg="Allow Facebook",content="facebook.com"
and allow 4 computers, each with a different IP address?
OR, must I create a rule for each? And how would THAT work out?
I BLOCK facebook access with THIS rule:
rule tcp, dest=(80,443), msg="Facebook Not Allowed",content="facebook.com"
I need an allow rule for 4 computers, 4 different IP addresses (persistant IPs, they will not change)
Thanks!!!!!!!!!!!!!!