ACL lists

Unanswered Question
Jun 11th, 2008

Helo all

I have Cisco AiroNet 1121 that have limitation to add 43 mac adres via web interface to ACL table.

I try to edit an ACL list but when i add nex entry in ACl like

access-list 770 permit 0012.3456.7890 0000.0000.0000

The entry is added after the deny line

deny 0000.0000.0000 ffff.ffff.ffff

Do anybody now how can I put the entry correctly?

Thanks for atention. :)

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
dominic.caron Wed, 06/11/2008 - 11:53

Copy your acl 770 in notepad, delete it from the 1121G and paste it back after you made your change.

You usually dont need to put the deny statement at the end of a IP ACL. I've never tried this on a mac ACL but it's probably the same.

j.kalwasinski Wed, 06/11/2008 - 12:08

I now but this is not the exact answer I need.

I can edit a Aironet 1121 config and upload it again but I have to load it an this AP rrestart all machine and i dont want to do it becacouse this means the user can't use wireles netwok. This must be done only in CLI.

Cisco must have a answer for this.

I try to find somthing posibility to make some changes.

Do You fink that I can make after I add a permit event one more think

I add a line

access-list permit 770 0000.0000.0000 ffff.ffff.ffff

and after this when i add

access-list 770 deny 0000.0000.0000 ffff.ffff.ffff

will be on the end of the list?

I have to check it but the first I want to understand edit the access-list without cheacking unknown posibilitis.

Actions

This Discussion