cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3482
Views
0
Helpful
4
Replies

Renaming ACL on ASA in Production Network without outage

mahesh18
Frequent Contributor
Frequent Contributor

Hi Everyone,

I need to change the ACL  name  on ASA  in Production Network.

This ACL  is of 16  lines.

Then it is applied to access-group to outside interface.

Need to know how can i do it without creating outage?

Regards

MAhesh

2 ACCEPTED SOLUTIONS

Accepted Solutions

pankaj29in
Beginner
Beginner

Hi Mahesh,

Place any any acl (allow all) on 1st line and do the changes of 16 line then later remove any any acl (1st line).

Cheers!!

Pankaj

View solution in original post

Julio Carvajal
Advisor
Advisor

Because an example worth more than 1000 words

access-list Julio permit tcp any any eq 80

access-group Julio in interface inside

ciscoasa(config)# sh run access-group

access-group Julio in interface inside

access-list Julio rename Mahesh

ciscoasa(config)# sh run access-group

access-group Mahesh in interface inside

ciscoasa(config)# sh run access-list

access-list Mahesh extended permit tcp any any eq www

For Networking Posts check my blog at http://www.laguiadelnetworking.com/category/english/

Cheers,

Julio Carvajal Segura

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

4 REPLIES 4

pankaj29in
Beginner
Beginner

Hi Mahesh,

Place any any acl (allow all) on 1st line and do the changes of 16 line then later remove any any acl (1st line).

Cheers!!

Pankaj

Julio Carvajal
Advisor
Advisor

Because an example worth more than 1000 words

access-list Julio permit tcp any any eq 80

access-group Julio in interface inside

ciscoasa(config)# sh run access-group

access-group Julio in interface inside

access-list Julio rename Mahesh

ciscoasa(config)# sh run access-group

access-group Mahesh in interface inside

ciscoasa(config)# sh run access-list

access-list Mahesh extended permit tcp any any eq www

For Networking Posts check my blog at http://www.laguiadelnetworking.com/category/english/

Cheers,

Julio Carvajal Segura

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

Hi Julio,

Many thanks for the great reply.

Regards

Mahesh

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: