Solved: Add remark using CLI to ASA

Andy White · ‎08-19-2011

Hello,

I'm faily new to the CLI world of the ASA.

1.) I've just added an access rule, but how do I add a remark to this access rule? Do I need to find the line it exists on?

2.) How do I insert a rule before another using CLI?

Thanks

varrao · ‎08-19-2011

Hi Andy,

You can use the command:

show access-list (to show all access-lists, with line number)

or

show access-list (for a specific acl with line number)

Hope this helps.

Thanks,

Varun

Thanks,
Varun Rao

View solution in original post

varrao · ‎08-19-2011

Here you go:

http://www.cisco.com/en/US/customer/docs/security/asa/asa82/command/reference/a1.html#wp1559889

Let me know if you need anything else.

Thanks,

Varun

Thanks,
Varun Rao

varrao · ‎08-19-2011

For eg:

You want to add the remark for this ACL:

access-list test permit ip any any

so the remark would be:

access-list test line 1 remark andy_test_acl

This would put the remark on the top.

Thanks,

Varun

Please do rate helpful posts.

Thanks,
Varun Rao

Andy White · ‎08-19-2011

Thanks, how do I show the line numbers, my CLI doesn't show this so it is difficult to use "line x" in the command.

varrao · ‎08-19-2011

Hi Andy,

You can use the command:

show access-list (to show all access-lists, with line number)

or

show access-list (for a specific acl with line number)

Hope this helps.

Thanks,

Varun

Thanks,
Varun Rao

Anu M Chacko · ‎08-19-2011

Hi Andy,

1) You can add a remark as follows:

access-list remark

This line is placed at the end of the ACL, if you enter it after adding access-list entries.

2) To add a rule before another, you can specify the line number as follows:

eg: access-list line permit ip any any

To see which access-list entry is at which line, use "sh access-list ".

Hope this helps!

Regards,

Anu

P.S. Please mark this question as resolved if it has been answered. Do rate helpful posts.