06-24-2016 03:50 AM - edited 03-05-2019 04:17 AM
Is it possible to filter traffic on an interface with a prefix-list that references to the access-group command? somehting like that:
int gi0/0
ip access group Test in
ip prefix-list Test seq 10 permit 10.0.0.0/8
Solved! Go to Solution.
06-27-2016 03:17 AM
yes you can delete by sequence number to remove individual line in ip access-lists
06-24-2016 05:59 AM
Hello,
it is not possible.
Prefix list can be used only for control of routing information.
06-27-2016 03:15 AM
ok thanks for the information. at the end i wanted to achieve to delete ACL-entries individually. this is possible using an ip access-list instead of "standard access-list".
06-27-2016 03:17 AM
yes you can delete by sequence number to remove individual line in ip access-lists
06-27-2016 03:53 AM
Hello
You can amend even standard acls without deleting the entire stanza
Example:
access-list 10 permit 1.1.1.1
access-list 10 permit 11.11.11.11
access-list 10 permit 111.111.111.111
sh access-lists
Standard IP access list 10 <-----------
10 permit 1.1.1.1
20 permit 11.11.11.11
30 permit 111.111.111.111
ip access-list standard 10
no 20
sh access-lists
Standard IP access list 10 <----------- standard
10 permit 1.1.1.1
30 permit 111.111.111.111
res
Paul
06-24-2016 06:01 AM
Hi
No that's not going to work 2 separate features , you could do a distribute list in the process for the interface and match with a prefix but you cant tie a prefix to an access-group
example
router eigrp 1
network 10.0.0.0
distribute-list TEST in g0/0
ip prefix-list Test seq 10 permit 10.0.0.0/8
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide