Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
536
Views
0
Helpful
1
Replies

AAA acls on FWSM

gseiler
Level 1
Level 1

‎03-10-2006 04:12 AM - edited ‎02-21-2020 10:14 AM

Hi, my customer has a problem on a FWSM 2.3.3.2.

He uses a script to manage his acls.

access-l mode manual

no access-l inside_auth_acl

access-l inside_auth_acl deny <whatever_to_deny >

access-l inside_auth_acl permit ip any any

access-l commit

After manual committing an AAA acl the acl is not effective anymore, it is disabled and not working, only after re-apply the statement "aaa authentication match...." it is working again.

CCO states that authentication acls are always commited automatically and manual commit does not work.

But does this mean that when doing manual commit, the acl becomes disabled and has to be re-applied again.Customer claims that this was ok with 2.3.1.3.

Now the question is if this is a bug or working as designed.

Regards Guenther

Labels:
0 Helpful
1 Reply 1

mchin345
Level 6
Level 6

‎03-16-2006 07:14 AM

To further look into this problem, can you send me the output of show tech and a full example of what changes are made?. Can you also send the console output if received that indicates that the access-list is "disabled".

0 Helpful
Customers Also Viewed These Support Documents