Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
532
Views
0
Helpful
4
Replies

ASA Show Command for ACL

AshSe
Level 1
Level 1

‎12-08-2023 12:16 AM

What command is used to display a particular ACL applied to which interfaces on a Cisco ASA?

0 Helpful
4 Replies 4

Rob Ingram
VIP
VIP

‎12-08-2023 12:28 AM

@AshSe you can run the command show run access-group this will tell you which ACL as applied to an interface. 

ASA# show run access-group
access-group INSIDE_OUT in interface INSIDE
access-group OUTSIDE_IN in interface OUTSIDE

You can then filter, run show access-list | include <ACL NAME> to filter on just the ACL attached to the interface.

ASA# show access-list | i OUTSIDE_IN
access-list OUTSIDE_IN; 1 elements; name hash: 0xe01d8199
access-list OUTSIDE_IN line 1 extended permit icmp any any echo-reply (hitcnt=0) 0xc857b49e

 

0 Helpful

AshSe
Level 1
Level 1
In response to Rob Ingram

‎12-08-2023 01:43 AM

Can you also share the similar command in Cisco Nexus switches.

0 Helpful

Rob Ingram
VIP
VIP
In response to AshSe

‎12-08-2023 01:49 AM

@AshSe try the command show ip access-list summary and this will confirm the ACL and which interfaces it it active on.

0 Helpful

MHM Cisco World
VIP
VIP

‎12-08-2023 12:35 AM

Show run access group 

But I think issue beyond know access group apply to interface

You have drop in one interface with implicit deny ?

MHM

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card