How do I remove a single ACL line in a 2811 router?

Unanswered Question
Aug 21st, 2007
User Badges:

I need to remove one line of code in a Cisco 2811 router, without removing the entire ACL. I'm used to making these changes in firewalls, but have figured out it's a little different in the router. Can someone provide me with some instruction? I heard I need to go into a sub-interface of the acl, but how do I do that?

Also, will making this change affect any traffic routing through this router?

Thanks for the help, I'm going to need to make this change within the next hour or so.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (7 ratings)
kevin.shi Tue, 08/21/2007 - 08:15
User Badges:

If it is a extended CAL(100-199), you can go to extended mode to delete/add items without affecting live traffic.

for example:

ip access-list extended 120

no .....

ttrevino1 Tue, 08/21/2007 - 08:30
User Badges:

It is, 101. So if I use that command,

"ip access-list extended 101", that will put me into the sub-interface, allowing me to remove individual lines of code?

kevin.shi Tue, 08/21/2007 - 08:46
User Badges:

ip access-list extended 101 then press 'enter'

you will get into 'sub-interface' of ACL

kevin.shi Tue, 08/21/2007 - 08:21
User Badges:

same story for the standard ACL, hope it helps!

anandramapathy Wed, 08/22/2007 - 00:51
User Badges:
  • Bronze, 100 points or more

The process is as follows

show access-list (NAME )

It will show you the access list with the line number

10 Line 1

20 Line 2

30 Line 3

40 Line 4

Suppose you want to remove Line 3,

conf t

ip accesss-list extended (name )

>no 30

That should remove your Line.

HTH Pls rate if it helps


This Discussion