cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
530
Views
0
Helpful
3
Replies
ChinmayKulkarni
Beginner

Access List - Removal of a line in an access list in router

Hi Experts,

 

I was preparing for my ICND1 exam and was doing test exams from PearsonVue. 

In the question, it was creating an extended numbered access list and wanted to remove a line. Out of two answers, I do not understand the last one i..e."Use the no 30 command in ACL 101 configuration mode" 

 

If I am right, you can only go into ACL configuration in an named list. Is that correct? Or how is this answer correct?

 

Thanks in advance.

CCENTAskQuestion.PNG

3 REPLIES 3
Georg Pauwen
VIP Expert

Hello,

 

you actually can delete sequence numbers from numbered access lists. Have a look at the syntax below:

 

Router(config)#ip access-list extended 101
Router(config-ext-nacl)#10 permit tcp
Router(config-ext-nacl)#10 permit tcp any any eq 22
Router(config-ext-nacl)#20 permit tcp any any eq 23
Router(config-ext-nacl)#30 permit tcp any any eq 80
Router(config-ext-nacl)#40 permit tcp any any eq 443
Router(config-ext-nacl)#50 permit tcp any any eq 500
Router(config-ext-nacl)#end

 

results in:

 

access-list 101 permit tcp any any eq 22
access-list 101 permit tcp any any eq telnet
access-list 101 permit tcp any any eq www
access-list 101 permit tcp any any eq 443
access-list 101 permit tcp any any eq 500

 

Router(config)#ip access-list extended 101
Router(config-ext-nacl)#no 30

 

results in;

 

access-list 101 permit tcp any any eq 22
access-list 101 permit tcp any any eq telnet
access-list 101 permit tcp any any eq 443
access-list 101 permit tcp any any eq 500

Thanks @Georg Pauwen.

I will try this out. Thanks for your help.

paul driver
VIP Mentor

Hello


@ChinmayKulkarni wrote:

Hi Experts,

 

I was preparing for my ICND1 exam and was doing test exams from PearsonVue. 

In the question, it was creating an extended numbered access list and wanted to remove a line. Out of two answers, I do not understand the last one i..e."Use the no 30 command in ACL 101 configuration mode" 

 

If I am right, you can only go into ACL configuration in an named list. Is that correct? Or how is this answer correct?

 

Thanks in advance.

CCENTAskQuestion.PNG


No your not correct, you can amend a standard and extended acl so this means either they can be named or numbered acls.

So the two correct answers in the above question would be -

3 & 4

 

 



kind regards
Paul

Please rate and mark posts accordingly if you have found any of the information provided useful.
It will hopefully assist others with similar issues in the future