Access-list can be only taken as a hole thing out.So if you issue :no access-list inside 1 it will remove the hole access-list.The simple solution is to copy the old one in clipboard and rearrange it and then put it back in:access-list inside1 deny h...

Remove the access-list (after bussiness hours) and start putting them back in one by one(from management interface).Look at the count of packet (sh access-list) and that will tell you where you problem lies. Sometimes the device just needs to reboot ...

shirwaziri1,If you look at you access list I believe that you are using access-list inside. Now look at the statements:access-list inside deny ip any host 211.234.104.232 (hitcnt=0)access-list inside permit ip any any (hitcnt=2696140)access-list insi...