Correct command to remove entire ACL in ASA?

Unanswered Question
Jul 18th, 2007
User Badges:

I need to remove a couple of outdated ACL's in my ASA, but when I use the command "no access-list outdated1", it says it's an incomplete command. I can't just go through and remove each line, as there are about 500 entries for each outdated acl I need to remove.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4.3 (3 ratings)
acomiskey Wed, 07/18/2007 - 05:57
User Badges:
  • Green, 3000 points or more

clear configure access-list

Please rate helpful posts.

srue Wed, 07/18/2007 - 06:13
User Badges:
  • Blue, 1500 points or more

obviously acomiskey's answer is what you were looking for, but you could have done it a different way.

when i have to do bulk edits (not deleting an entire ACL) i simply use textpad (an alternative to notepad) to do a quick search and replace...

so in your case, you could have copied the entire ACL into your fav. text editor,

and did a search for 'access-list' and simply replace with 'no access-list', then paste that back into the firewall.

again, acomiskey's solution is the obvious choice here, just wanted to let you know there are other ways.

(just make sure with bulk pastes you are using a terminal emulator that can support that sort of buffer size..hypterminal canNOT by default, and neither can the windows telnet client).

ttrevino1 Wed, 07/18/2007 - 06:21
User Badges:

I have used notepad as you mentioned to find and replace when I've had several lines to change, and it does work very well using Putty. I was looking for a simple one line removes it all command.

Thanks for the help from both responses! :o)


This Discussion