Solved: update acl with rme

raindrop18 · ‎01-24-2011

I want to update one line of acl on my routers what is the best and easy way to do that . I am thinking running compliance job and update the config or setup rme adhoc job. here the current config

interface FastEthernet0/0.100

ip access-group Marketing

________________________________

ip access-list extended Marketing

permit ip any 172.181.52.0 0.0.1.255

permit ip any 172.181.152.0 0.0.1.255

deny tcp any 192.16.0.1 0.20.255.0

eny udp any 192.16.0.1 0.20.255.0 permit ip any any

and I want to add << permit ip any 172.181.96.0 0.0.1.255

any suggestion highly appreciated. thank!!!

Robert Pavone · ‎01-25-2011

You could do ONE adhoc netconfig job that contained all the steps you listed out in order.

Rob

View solution in original post

Robert Pavone · ‎01-25-2011

You first should, in one netconfig job, remove the acl and then readd it as you want it with the new line.

no ip access-list extended Marketing

ip access-list extended Marketing

permit ip any 172.181.52.0 0.0.1.255

permit ip any 172.181.152.0 0.0.1.255

permit ip any 172.181.96.0 0.0.1.255

deny tcp any 192.16.0.1 0.20.255.0

deny udp any 192.16.0.1 0.20.255.0 permit ip any any

Rob

raindrop18 · ‎01-25-2011

thanks for your response, so to make sure do I need 4 net config job to full fill my objective.

1- remove acl from interface

2- remove acl

3- add new acl

4- apply the new acl on the interface.

Thanks again.

Robert Pavone · ‎01-25-2011

You could do ONE adhoc netconfig job that contained all the steps you listed out in order.

Rob

raindrop18 · ‎01-25-2011

thanks, it's worked as I expected!