Solved: Editing Named ACLs

nbhungalia · ‎02-17-2003

Ok, I must be missing something. As I know, I should be able to modify the named ACLs without doing "no" on the list like the normal ACLs. Can anyone tell me how to modify named ACLs or if anyone knows of any docs, I would appreciate it.

Thanks in advance!

Naren

ngotmanov · ‎02-26-2003

You have to put 'no permit ip any any' and then 'permit ip any any'. Also you can create text file with ACL on TFTP server and any comments if nessesary starting with '!'-sign. The file must begin with two strings 'no ip access-list extended ACLname' and 'ip access-list extended ACLname' . It is more convenient if you have many records and don't need to remember the rurpose of each record. After that you can edit this file, save and start 'conf net' dialogue on the router.

View solution in original post

bkganesh · ‎02-18-2003

If you want to remove individual ACL entries, go to config mode and then into the named-acl mode. You can use the following syntax :

"no" .

There is an upcoming release of IOS that provides sequence numbering support for ACL entries in IOS.

-Ganesh.

nbhungalia · ‎02-18-2003

What if I want to add an entry to the named acl; if I have an "permit ip any any" at the end?

ngotmanov · ‎02-26-2003

You have to put 'no permit ip any any' and then 'permit ip any any'. Also you can create text file with ACL on TFTP server and any comments if nessesary starting with '!'-sign. The file must begin with two strings 'no ip access-list extended ACLname' and 'ip access-list extended ACLname' . It is more convenient if you have many records and don't need to remember the rurpose of each record. After that you can edit this file, save and start 'conf net' dialogue on the router.