Subnetting & CIDR Basics: Splitting a /24
What CIDR notation and subnet masks mean, with a worked example of splitting a /24.
Subnetting is the practice of carving one large block of IP addresses into several smaller networks. At first the 192.168.1.0/24 notation and a mask like 255.255.255.0 look like two unrelated things, but they are really the same fact written two different ways. This guide walks a beginner from what CIDR notation and subnet masks actually mean, through the host-count formula, all the way to splitting a single /24 into four /26 networks.
One idea unlocks everything: an IPv4 address is 32 bits, and those 32 bits split into a network part and a host part. The number that tells you where the network part ends is the prefix — the value after the slash in /24.
CIDR notation and subnet masks are the same thing
CIDR (Classless Inter-Domain Routing) notation looks like address/prefix-length. The prefix length says how many of the 32 bits, counting from the left, belong to the network. A /24 means the first 24 bits are network and the remaining 8 bits are host.
A subnet mask states the same thing in dotted-decimal. You set every network bit to 1 and every host bit to 0, then convert each group of 8 bits to decimal.
| CIDR | Subnet mask | Host bits | Usable hosts |
|---|---|---|---|
/24 | 255.255.255.0 | 8 | 254 |
/26 | 255.255.255.192 | 6 | 62 |
/30 | 255.255.255.252 | 2 | 2 |
A bigger prefix (say /24 → /26) means more network bits and fewer host bits, so each subnet holds fewer machines. To drop in any address and instantly see its mask, network, and range, the fastest path is the CIDR calculator.
The host-count formula: 2^(32-prefix) - 2
The total number of addresses in a subnet is two raised to the number of host bits, i.e. 2^(32 - prefix). But two of those addresses are reserved and cannot go to ordinary devices.
- Network address — the first address, with all host bits set to
0. It names the subnet itself. - Broadcast address — the last address, with all host bits set to
1. It addresses every host at once.
So the number you can actually assign is usable hosts = 2^(32 - prefix) - 2. A /26 has 6 host bits, giving 2^6 = 64 addresses; subtract 2 and you get 62 usable hosts. (Two exceptions: /31 is used for point-to-point links and ignores the -2 rule, and /32 denotes a single host.)
Worked example: splitting 192.168.1.0/24 into four /26s
Going from /24 to /26 adds 2 bits to the prefix. Two extra bits create 2^2 = 4 combinations, so you get exactly four subnets. Each /26 holds 64 addresses, so the boundaries land cleanly on 0, 64, 128, 192.
| Subnet | Network | Usable range | Broadcast |
|---|---|---|---|
| #1 | 192.168.1.0/26 | .1 – .62 | 192.168.1.63 |
| #2 | 192.168.1.64/26 | .65 – .126 | 192.168.1.127 |
| #3 | 192.168.1.128/26 | .129 – .190 | 192.168.1.191 |
| #4 | 192.168.1.192/26 | .193 – .254 | 192.168.1.255 |
Notice that the first address of each subnet (.0, .64, .128, .192) is the network address and the last (.63, .127, .191, .255) is the broadcast — neither can be handed to a device. To generate this whole table without doing the arithmetic by hand, feed 192.168.1.0/24 and the target /26 into the subnet splitter.
Which tool to reach for, and when
Three tasks start from different inputs. Pick the tool based on what you have and what you want to learn.
- Inspect a single CIDR — to see the mask, range, and host count for
10.0.0.0/20, use the CIDR calculator. - Divide a block into many subnets — to split a
/24into four/26s, use the subnet splitter. - Only know a start and end IP — to turn a range like
192.168.1.10 – 192.168.1.200into the smallest set of CIDR blocks, use the IP range to CIDR converter.
Firewall rules, routing tables, and cloud security groups all expect CIDR input, and doing the math by hand is error-prone. Double-checking with these tools is a cheap habit that prevents both accidental lockouts and over-permissive rules caused by a wrong range.