Policy changes on running VPN

Unanswered Question
May 12th, 2007
User Badges:

Hello

We have end to end connectivity between two locations through IPSEC VPN and we have defined policies using access-list, we have make changes (adding new host access) in the access-list on the remote router and we are accessing remote router through telnet. When we are removing access-list for applying updated access-list we lose the connectivity because of the policy mismatch, is there any way to change the access-list without loosing the telnet access.


Please revert if any suggestion.


Thanks

Yamin

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
sundar.palaniappan Sat, 05/12/2007 - 20:45
User Badges:
  • Green, 3000 points or more

You can make changes to the access list by using the sequence numbers used by access list statements. Sequence numbers can be used to add/delete access control entries. This way you don't have to remove the access list to make any modifications.


Take a look at this example.


http://cisco.com/en/US/products/ps6441/products_configuration_guide_chapter09186a0080716ebf.html#wp1027258


HTH


Sundar

Actions

This Discussion