Re: ACL remark

Anukalp S · ‎03-30-2020

Hello.. is there any possibility to update ACL remark on the top of ACL without removing and adding ACL.

ip access-list extended VC_ACL
remark Match_VC_Traffic ---------------- to be update
permit udp any range 16384 32767 any dscp cs4
permit udp any range 49152 65535 any dscp cs4

RR#sh ip access-lists VC_ACL
Extended IP access list VC_ACL
5 permit udp any range 16384 32767 any dscp cs4
10 permit udp any range 49152 65535 any dscp cs4

Cristian Matei · ‎03-31-2020

Hi,

Unfortunately, "remarks" don't have sequence numbers, so you can't inject or replace a specific "remark". Your only solution is to just reconfigure the ACL.

Regards,

Cristian Matei.

Georg Pauwen · ‎03-31-2020

Hello,

I guess one way to 'solve' this would be to copy the startup config to a TFTP server, edit the text file and add the remark at the desired position, copy the edited file back to flash, and the issue the command 'copy startup-config running-config'.

Joseph W. Doherty · ‎03-31-2020

Or, what I usually do, is "show" ACL on screen, copy it to a scratch text file, edit it (adding a no ACL at start), and paste it back into the device while it's in config mode. (Basically same concept as what Georg suggests, but I find it a bit faster to do.)