RE: Cisco acls

[Scott Stursa <stursa () mailer fsu edu>]

On Sat, 5 Mar 2005 MHawkins () TULLIB COM wrote:

> Changes made to ACl's in config mode on Cisco routers become part of the
> running config immediately upon hitting the enter key in config.

Oh yeah (been burned by that!).

Sorry to be appending to this thread so late, but did not have a
legitimate reason to replace an ACL until today:

-------------------
<undisclosed>-3750#sho run int vlan704
Building configuration...

Current configuration : 384 bytes
!
interface Vlan704
 ip address 146.201.<undisclosed>.1 255.255.254.0
 ip access-group vlan704-in-2004-0608-00 in
 ip access-group vlan704-out-2005-0223-00 out
 no ip redirects
 no ip unreachables
 ip pim sparse-mode
 ip mroute-cache distributed
 ip sap listen
 load-interval 30
 hold-queue 300 in
end

<undisclosed>-3750# config t
Enter configuration commands, one per line.  End with CNTL/Z.
<undisclosed>-3750(config)#int vlan704
<undisclosed>-3750(config-if)#ip access-group vlan704-out-2005-0310-00 out
<undisclosed>-3750(config-if)#^Z
<undisclosed>-3750#sho run int vlan704
Building configuration...

Current configuration : 384 bytes
!
interface Vlan704
 ip address 146.201.<undisclosed>.1 255.255.254.0
 ip access-group vlan704-in-2004-0608-00 in
 ip access-group vlan704-out-2005-0310-00 out
---<snip>----


Interval? What interval?

- SLS

------------------------------------------------------------------------
Scott L. Stursa                                             850/645-2397
Network Security Assessment                        stursa () mailer fsu edu
Technology Integration/User Services            Florida State University

                     - No good deed goes unpunished -
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards