Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
567
Views
0
Helpful
3
Replies

Why there is a difference between Router and PIX ACL

irshad.saifi
Level 1
Level 1

‎10-29-2004 01:17 PM - edited ‎03-05-2019 11:18 AM

Hi,

I have a very basic question about the differences beween ACL behaviour in PIX and Router.

In Router if we put an extended acl entry and want to remove an mid entry then either we have to clear the entire ACL or remove the entries all the below.

Whereas in case of PIX we can remove any of the entry.

Why this difference is there.

Would appreciate your quick answers.

Thanks

Irshad

Labels:
0 Helpful
3 Replies 3

sachinraja
Level 9
Level 9

‎10-30-2004 03:39 AM

The PIX OS is designed such a way. Anyway, even in routers you can remove a mid entry by configuring named access-lists. You need not clear the entire ACL in this case.

ip access-list extended ROUTER-ACL

permit ip host x.x.x.x host y.y.y.y any

0 Helpful

rajput_p
Level 1
Level 1

‎11-07-2004 03:55 AM

I think its totaly Depend on IOS feature casue Router IOS is not capabel to do this and in PIX we some specialize and advance feature in PIX IOS thats why u can remove any of the entry in PIX ACL.

0 Helpful

csco10840235
Level 1
Level 1
In response to rajput_p

‎11-29-2004 02:25 AM

you can remove part of the acces-list statement using named access list. Since PIX is completely used for security more features like this is used

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card