Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
394
Views
10
Helpful
2
Replies

Router ACL with external file reference

promise kumalo
Level 1
Level 1

‎05-19-2022 12:28 AM

Does anyone know a way of creating a router access list  that references an external file sitting on a server, perhaps a text file with a bunch of IP's. The goal is to modify the file to add/remove IP's without touching/logging into the router

Labels:
2 Replies 2

balaji.bandi
Hall of Fame
Hall of Fame

‎05-19-2022 01:18 AM

Now sure what you mean by the server, but you can  use TFTP: check below : (to get an idea, is this what you looking to do ?)

 

https://www.cisco.com/en/US/docs/ios-xml/ios/sec_data_acl/configuration/15-2mt/sec-acl-ov-gdl.html

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Georg Pauwen
VIP
VIP

‎05-19-2022 06:08 AM

Hello,

 

if you don't want to access the router at all, I think the best you can do is this:

 

1. Change the router's configuration in a text file, and save that text file to a TFTP server that is hosted on the external server.

2. Have the router pull that text file periodically from the TFTP server and save it as 'startup-config' locally.

3. Use an EEM script to periodically compare the startup to the running configuration. If there is a change the a specific access list, the EEM script then copies the startup to the running configuration.

4. The disadvantage is that the changes to the access list are not applied immediately, but only after the configured time interval in which the EEM script compares the running to the startup config.

 

If that is something that sounds feasible, I can work this out and send you the config file.

Customers Also Viewed These Support Documents