Solved: named ACL and ACE numbering

chrismgeary · ‎11-22-2005

I created a new extended named ACL and enter a few ACEs numbered 10,20,30,100,110,1000 to give them plenty of space apart. When I reload the switch, the numbering has disappeared and they are all spaced 10 apart. Why does this happen and is there a way to maintain larger spaces? I am thinking that in time I may come to make many modifications to the ACL and the gap between two entries may reduce to nothing. I am not going to reload my switch just to reset the gaps and I would rather not remove the ACL completely and replace it to achieve the same.

thanks for any advice

Chris

leonvd79 · ‎11-23-2005

Perhaps yopu can take a look at this document, it explains Sequence Numbering in depth.

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122s/122snwft/release/122s14/fsaclseq.htm

HTH

View solution in original post

leonvd79 · ‎11-23-2005

The ACL is stored in RAM initially. When you display your access-list for instance you see the seqeunce numbers. When you display your're running configuration you don't see them.

Are you using ip access-list or the traditional access-list?

ip access-list extended Popey

10 permit ip host 10.10.10.10 any

100 permit ip 10.10.20.0 0.0.0.255 any

1000 deny ip any any

leonvd79 · ‎11-23-2005

Perhaps yopu can take a look at this document, it explains Sequence Numbering in depth.

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122s/122snwft/release/122s14/fsaclseq.htm

HTH

chrismgeary · ‎11-23-2005

that is perfect.. just what i was looking for!

many thanks :o)