By Manny Fernandez

November 21, 2018

SIPCALC

Anyone that has read my blog, knows I use sipcalc on my Mac. I used to use it on my Linux box when I ran it as my primary OS. When I moved to Mac, I used it with ‘ports’ but later started running ‘homebrew’. I use it daily. I am going to give you some examples of how I use it.

Finding where the IP sits from a subnet’s perspective

As you can see in the screenshot above, if you wanted to figure out where the IP sits inside of a specific subnet you could simply type ‘sipcalc %ip-address% a slash and the number of bits. In the example above, we are given the IP address of 10.1.1.17/29 but we are not sure if the IP we want to use is the ‘network’ or the ‘broadcast’ etc. Simply typing ‘sipcalc 10.1.1.17/29’ will give you:

* The Decimal and Hex version of the host address
* The Address and Mask (Non-CIDR)
* The Network bits.
* The Broadcast Address
* The Cisco wildcard address for the network.
* The usable range of IPs.

Subnetting a /24 to be used by smaller subnets

In this example, you are setting up some transient network to use between some routers and core or distribution switches. You do not want to use a full /24 per router since you have numerous routers (such as in a DMZ where you have third-party companies dropping routers into your DC). Here, the customer has told you to use 10.240.254.0/24 and he would like to have 6 usable addresses (3 for each HSRP instance).

Here you can see that we started with the /24 subnet we wanted to use, followed by a ‘-s’ (lowercase s as capital ’S’ is for v6) to show a split based on the ’29’. Essentially, it means:

What /29 subnets could I get if I used a 10.240.254.0/24?

As you can see from the output, 10.240.254.0/29 would be the first subnet while the 10.240.254.8/29 would be the next, followed by 10.240.254.16/29 and so forth.

Subnetting a /24 to be used by smaller subnets with details

Similar to the previous example, if you wanted to know the /29 subnets but also wanted to provide details about each of the subnets, you could use the ‘-u’.

In this example, we not only see the /29 seperated as the previous command, but using the ‘-u’ will give you the ‘split verbose’ version of the output. This could be useful to provide to the third-party group so they understand the subnet and where they live in it.

Showing the ‘CLASS’
If, for whatever reason, you require to know the class of the IP addesses or subnets, you can use the ‘-c’ switch and it will display it.

Noteworthy:
Sipcalc supports IPv6. Sipcalc can take input in three forms, an ip-address/netmask, an interface or via stdin using the special character -.

To install using home-brew ‘brew install sipcalc’

Hope this helps.

Recent posts

  • If you've spent any time configuring user authentication on... Full Story

  • DNS is one of those technologies that quietly underpins... Full Story

  • BGP issues on FortiGate firewalls usually trace back to... Full Story

  • Every time your laptop talks to your router, a... Full Story

  • If you've spent any time configuring NAT on a... Full Story

  • If you have spent any time configuring firewall policies... Full Story

  • High availability on FortiGate is one of those features... Full Story

  • If you've configured SD-WAN on a FortiGate, you've almost... Full Story

  • FortiLink is the management protocol that turns a FortiSwitch... Full Story

  • FortiSwitches are pretty rock solid from Mean Time Between... Full Story

  • This is a quicky tip.  Have you ever gone... Full Story

  • DNS is one of those quiet pieces of internet... Full Story

  • This article is an updated version of the previous... Full Story

  • You will add ns2 as a secondary (slave) BIND9... Full Story

  • In the process of deploying my lab, I needed... Full Story

  • RFC 8805, used to be known as Self-Correcting IP... Full Story

  • Years back, I wrote an article about certificate pinning. ... Full Story

  • FortiGates have the ability to send alerts to Microsoft... Full Story

  • In this post, I am going to walk through... Full Story

  • Troubleshooting VoIP on a FortiGate can feel like trying... Full Story

  • Prior to FortiOS 7.0, there were three commands to... Full Story

  • In this post, I am going to go over... Full Story

  • What we are going to do:  We are going... Full Story

  • Choosing between FGCP (FortiGate Clustering Protocol) and FGSP (FortiGate... Full Story

  • Creating a VLAN on macOS (The "Pro" Move) A... Full Story

  • This blog post explores the logic behind how macOS... Full Story

  • Pretty Fly for a Wi-Fi Tell My Wi-Fi Love... Full Story

  • Part of my daily gig is creating BoMs (Bill-of-Materials)... Full Story

  • ICMP introduces several security risks, but careful filtering, rate... Full Story

  • The command diag debug application dhcps -1 enables full... Full Story

  • In the world of FortiOS, execute tac report is... Full Story

  • LLDP; What is it The Link Layer Discovery Protocol... Full Story

  • What it actually does When you run diagnose fdsm... Full Story

  • Monkey Bites are bite-sized, high-impact security insights designed for... Full Story

  • I have run macOS in macOS with Parallels but... Full Story

  • Don't be confused with my other FortiNAC posts where... Full Story

  • This is the third session in a multi-part article... Full Story

  • Today I was configuring key-based authentication on a FortiGate... Full Story

  • Netcat, often called the "Swiss Army knife" of networking,... Full Story

  • At its core, IEEE 802.1X is a network layer... Full Story

  • In case you did not see the previous FortiNAC... Full Story

  • This is our 5th session where we are going... Full Story

  • Now that we have Wireshark installed and somewhat configured,... Full Story

  • The Philosophy of Packet Analysis Troubleshooting isn't about looking... Full Story

  • Overview FortiOS 8.0 introduces custom tags as a first-class... Full Story

  • These are two distinct mechanisms on FortiOS, and conflating... Full Story

  • Replacement messages are the pages and text blocks that... Full Story