07-24-2013 09:05 PM - edited 03-11-2019 07:16 PM
Hi Everyone,
I need to change the ACL name on ASA in Production Network.
This ACL is of 16 lines.
Then it is applied to access-group to outside interface.
Need to know how can i do it without creating outage?
Regards
MAhesh
Solved! Go to Solution.
07-24-2013 11:40 PM
Hi Mahesh,
Place any any acl (allow all) on 1st line and do the changes of 16 line then later remove any any acl (1st line).
Cheers!!
Pankaj
07-24-2013 11:43 PM
Because an example worth more than 1000 words
access-list Julio permit tcp any any eq 80
access-group Julio in interface inside
ciscoasa(config)# sh run access-group
access-group Julio in interface inside
access-list Julio rename Mahesh
ciscoasa(config)# sh run access-group
access-group Mahesh in interface inside
ciscoasa(config)# sh run access-list
access-list Mahesh extended permit tcp any any eq www
For Networking Posts check my blog at http://www.laguiadelnetworking.com/category/english/
Cheers,
Julio Carvajal Segura
07-24-2013 11:40 PM
Hi Mahesh,
Place any any acl (allow all) on 1st line and do the changes of 16 line then later remove any any acl (1st line).
Cheers!!
Pankaj
07-24-2013 11:43 PM
Because an example worth more than 1000 words
access-list Julio permit tcp any any eq 80
access-group Julio in interface inside
ciscoasa(config)# sh run access-group
access-group Julio in interface inside
access-list Julio rename Mahesh
ciscoasa(config)# sh run access-group
access-group Mahesh in interface inside
ciscoasa(config)# sh run access-list
access-list Mahesh extended permit tcp any any eq www
For Networking Posts check my blog at http://www.laguiadelnetworking.com/category/english/
Cheers,
Julio Carvajal Segura
07-25-2013 12:03 AM
07-25-2013 11:18 AM
Hi Julio,
Many thanks for the great reply.
Regards
Mahesh
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide