04-24-2007 09:15 AM - edited 03-11-2019 03:03 AM
How do you modify an ACE whose line numbers don't increment because they are a part of the same object-group expansion?
04-24-2007 09:51 AM
You change the objetct group.
But take care if the same object group is usesd in multiple ACLs then this will add or delete in all the ACLs.
Reference:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a00800d641d.shtml
example:
(config)# object-group network host_grp_2
(config-network)# network-object host 172.16.10.1
(config-network)# network-object host 172.16.10.2
(config-network)# no network-object host 172.16.10.2
(config-network)# exit
sincerely
Patrick
04-25-2007 06:13 AM
Bu the way if you are doing < show access-list > you will see the expanded version of the access-list with the hitcounts.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide