Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
972
Views
0
Helpful
4
Replies

class-map type inspect match access-group name question

Go to solution
juan-ruiz
Level 1
Level 1

‎09-16-2014 07:58 PM - edited ‎03-11-2019 09:45 PM

I'm creating a zone base firewall solution and all appears to be fine until I create a class-map type inspect match-all or any

and match access-group name acl to match an extended ACL and once I match it the commands runs but when I go back to view the configuration of the class-map it is not there. 

 

I have tried other named ACLs and it works if the ACL contents are simple like permit ip any any but for complex ACLs with ranges, tcp, udp, icmp etc etc it does not take it but  it does not report an issue either and when I view the config its not there for the complex extended acl but for the simple extended acl it does show.

 

Any restrictions or possible bugs I'm running into?

Thanks for all looking

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marius Gunnerud
VIP
VIP
In response to juan-ruiz

‎09-17-2014 02:10 PM

Ah yes, that would do it.  But you didn't mention that in your original post which is why its always good to provide the configuration you are working with in the post ;-)

Glad you got it sorted

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Marius Gunnerud
VIP
VIP

‎09-17-2014 12:51 AM

This could be a bug.  Could you post the exact configuration you are trying to implement?  I just set up a small test and I have been unable to reproduce what you are seeing.  I would like to see if I get the same result using your config. 

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Go to solution
juan-ruiz
Level 1
Level 1
In response to Marius Gunnerud

‎09-17-2014 07:34 AM

Hi Marius,

I tried to carry out this same config on a router running 15.x code and the message I got back is

access-lists with 'log' keyword are not supported so I removed the log from the acl and it worked fine.

 

Thanks for the reply back.

Regards,

Juan

 

0 Helpful

Go to solution
Marius Gunnerud
VIP
VIP
In response to juan-ruiz

‎09-17-2014 02:10 PM

Ah yes, that would do it.  But you didn't mention that in your original post which is why its always good to provide the configuration you are working with in the post ;-)

Glad you got it sorted

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Go to solution
juan-ruiz
Level 1
Level 1
In response to Marius Gunnerud

‎09-18-2014 06:32 AM

Thank you for your time.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card