Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
718
Views
5
Helpful
4
Replies

Adding to an ACL

Go to solution
burleyman
Level 8
Level 8

‎08-04-2010 08:46 AM - edited ‎03-04-2019 09:18 AM

This is already configured

ip access-list standard INCARRIER
permit 10.10.4.0 0.0.0.255
permit 10.10.204.0 0.0.0.255
permit 10.10.33.0 0.0.0.255

and I want to add this

permit 10.10.7.0 0.0.0.255

and I want it to look like this

ip access-list standard INCARRIER
permit 10.10.4.0 0.0.0.255
permit 10.10.204.0 0.0.0.255
permit 10.10.33.0 0.0.0.255
permit 10.10.7.0 0.0.0.255


would I do this


2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

or would I need to do this


2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.4.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.204.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.33.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

Thanks,

Mike

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Collin Clark
VIP Alumni
VIP Alumni

‎08-04-2010 08:52 AM

Mike-

You can add just the new network, no need to add them all again.


2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

Hope it helps.

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Collin Clark
VIP Alumni
VIP Alumni

‎08-04-2010 08:52 AM

Mike-

You can add just the new network, no need to add them all again.


2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

Hope it helps.

0 Helpful

Go to solution
burleyman
Level 8
Level 8
In response to Collin Clark

‎08-04-2010 09:06 AM

Thanks, that is what I thought but wanted to cover my bases.

One more based on that......If I wanted to add in the middle I would need to do this.....correct?

2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.4.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.204.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

and no need add the last permit


and the result would be

ip access-list standard INPAETEC
permit 10.10.4.0 0.0.0.255
permit 10.10.204.0 0.0.0.255
permit 10.10.7.0 0.0.0.255
permit 10.10.33.0 0.0.0.255

Mike

0 Helpful

Go to solution
Collin Clark
VIP Alumni
VIP Alumni
In response to burleyman

‎08-04-2010 09:12 AM

Mike-

Those dang standard ACLs don't have sequence numbers. The order you put them makes no difference in how they show up in the config. If you need to arrange them in a specific order you'll have to use extended ACLs.

Go to solution
burleyman
Level 8
Level 8
In response to Collin Clark

‎08-04-2010 09:16 AM

Thanks for your help.

Mike

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card