Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2739
Views
0
Helpful
4
Replies

Editing extended ACL

Go to solution
rshum
Level 1
Level 1

‎05-02-2011 09:40 AM - edited ‎03-06-2019 04:52 PM

I have an extended ACL on a switch (a 6504 running 12.2) I want to edit. The acl is named:

Extended IP access list Name-TO-Name

permit ip host 10.170.16.123 host 172.16.100.10
permit ip host 10.170.16.123 host 172.16.100.62
permit ip host 10.159.10.57 host 172.16.100.10
permit ip host 10.159.10.63 host 172.16.100.10
deny   ip any 172.16.100.0 0.0.0.255
permit ip any any

I want to add a couple of networks in prior to the Deny statement and can't figure it out. I can't even edit the ACL for some reason. I know I'm having some sort of brain lock but any suggestion would be appreciated.

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
glen.grant
VIP Alumni
VIP Alumni

‎05-02-2011 10:09 AM

Do a show access lists and you will see order numbers on the left side.  Just pick a number between where you want them in the list and use that number before the  ACL entry .  They normally start at 10 and go up , it will look like 0010 for the first entry and 0020 for the 2nd  entry, if you want a statement between the first and second then pick  0011 for the entry number  then enter ACL entry after this number.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
glen.grant
VIP Alumni
VIP Alumni

‎05-02-2011 10:09 AM

Do a show access lists and you will see order numbers on the left side.  Just pick a number between where you want them in the list and use that number before the  ACL entry .  They normally start at 10 and go up , it will look like 0010 for the first entry and 0020 for the 2nd  entry, if you want a statement between the first and second then pick  0011 for the entry number  then enter ACL entry after this number.

0 Helpful

Go to solution
rshum
Level 1
Level 1
In response to glen.grant

‎05-02-2011 10:12 AM

Thanks for the reply I figured it out also. I think if I limit myself to processing 2 issues at a time I won't get all brain locked LOL. Thanks for the information though.

0 Helpful

Go to solution
A Abdul
Level 1
Level 1

‎05-02-2011 10:20 AM

Inserting the new statements before the deny stmnts will work based on acl numbers. or rebuilding the entire ACL.

0 Helpful

Go to solution
JohnHeller_2
Level 1
Level 1
In response to A Abdul

‎05-02-2011 05:42 PM

I've always edited my extended ACL's in a program like word pad,

the deleted the old ACL, and copy/paste the new one in.

I didn't realise that there was any way to insert commands.

I'll try that method, but i still think its going to be easier to edit them offline.

Regards,

John.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card