Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
656
Views
0
Helpful
1
Replies

CSS : Procedure for adding clause to existing acl

AJAZ NAWAZ
Level 5
Level 5

‎08-17-2011 06:24 AM

Hi,

I have an existing acl which appears with all intense and purposes to be applied globally. I wanted to ask please the best-practice procedure to add a clause. I mean for example:

1. Must the acl be disabled before adding new clause, and then re-enabled

2. Is the 'apply circuit-(vlan) command required each time acl is edited

thank in advance to all those who reply

regards

Ajaz Nawaz

Labels:
0 Helpful
1 Reply 1

Christopher Miles
Cisco Employee
Cisco Employee

‎08-21-2011 09:25 PM

Hi Ajaz,

To add a new clause follow the below procedure, I have included the link to provide more clarity around the entire acl  command process

Usage Guidelines

To add a new clause to an existing and applied ACL, reapply the ACL to the circuit with the apply circuit command.

To apply any changes to an existing clause on an existing and applied ACL, you must remove the ACL from the circuit with the (config-acl) removecommand, and then reapply the ACL to the circuit.

To remove a clause currently in use, you must remove its applied ACL from the circuit, delete the clause, and then reapply the ACL to the circuit.

http://www.cisco.com/en/US/partner/docs/app_ntwk_services/data_center_app_services/css11500series/v8.20/command/reference/CmdAclC.html

I would strongly suggest you have console access when using ACLs on the CSS as it can be a bit unforgiving when modifying ACLs

cheers,

Chris

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card