Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
788
Views
0
Helpful
2
Replies

Router ACL insert into middle?

jason.aarons
Level 1
Level 1

‎09-28-2004 11:05 AM - edited ‎02-20-2020 09:25 PM

Is there a way in 12.2T code to insert something in the middle of the ACL? I keep doing a "no ip access-list extended DMZ_Screen_In", modify the ACL and then re-apply it. The actual ACL is about 100 lines and I've re-added it sometimes to find I missed something.

I'd like to be able to insert a line in the middle.

ip access-list extended DMZ_Screen_In

permit tcp any any established

permit tcp any eq ftp any gt 1023 log

permit tcp any eq ftp-data any gt 1023 log

permit udp any any eq ntp

permit tcp any any eq 19226

deny ip any any

Labels:
0 Helpful
2 Replies 2

scoclayton
Level 7
Level 7

‎09-28-2004 07:30 PM

Depends on the version of 12.2T code you have. We added a new feature to 12.2(15)T (as well as 12.3 mainline code) that allows sequence numbering for *named* access-lists only. Take a look here:

http://www.cisco.com/univercd/cc/td/doc/product/software/ios122s/122snwft/release/122s14/fsaclseq.htm

Fairly straight-forward and overdue feature (in my opinion). Let me know if you have any questions though.

Scott

0 Helpful

jahilnt
Level 1
Level 1

‎09-28-2004 10:16 PM

if you can use common sense, then there are many ways to minimize access list work. what I will suggest better to upgrad ur ios to 12.3. In this IOS you will have numbering index you can use these index to update or insert access list line.

if you can not upgrad then you can copy paste all access list into notepad or any text editor and change whatever you want instead writing all access list from scratch.

0 Helpful
Customers Also Viewed These Support Documents