named extended access-list in 7200

Answered Question
Oct 11th, 2012

Hello,

I've got a 7200 vxr that I'm trying to create a named extended access-list in.

I got to conf t

if I go into ip after that the only commands available for access-list are log-update, logging, and resequence.

so if I go back to the main config menu access-list is an available command

but then from the main config menu, if I type: access-list extended eth0_in it says invalid input detected at the carrot marker which is under the first character of the work extended.

also, at the main config menu, if I type: ip access-list extended eth0_in it again give me the invalid input detected at the word extended.

I don't understand what I am missing to get this to work.

I would greatly appreciate any help anyone could give me on this.

Thanks,

Allen

I have this problem too.
0 votes
Correct Answer by Giuseppe Larosa about 1 year 6 months ago

Hello Allen,

>> OMEGA-edge(boot)

your router hasn't loaded a full IOS image this is the meaning of the (boot), so you have a more basic problem then named extended access-list.

check with

show version

show bootvar

you need then to find out if a complete IOS image is present in flash

Hope to help

Giuseppe

  • 1
  • 2
  • 3
  • 4
  • 5
Average Rating: 5 (3 ratings)
apingleton Thu, 10/11/2012 - 12:22

Sure, here it is:

Cisco Internetwork Operating System Software

IOS (tm) 7200 Software (C7200-KBOOT-M), Version 12.3(6), RELEASE SOFTWARE (fc3)

Thank you for your valuable time,

Allen

AhmedSonba Thu, 10/11/2012 - 12:43

Hello Allen,

Its rather strange honstly because I have tried it on my router and its working fine

ip access-list ?

  extended    Extended Access List

  log-update  Control access list log updates

  logging     Control access list logging

  resequence  Resequence Access List

  standard    Standard Access Lis

also I have copied and past your command "ip access-list extended eth0_in"

and it worked just fine on my router .

Can you try it again and copy and post the out come here

Ahmed Sonba

apingleton Thu, 10/11/2012 - 13:20

Sure here is the command you listed above:

OMEGA-edge(boot)#conf t

Enter configuration commands, one per line.  End with CNTL/Z.

OMEGA-edge(boot)(config)#ip access-list ?

  log-update  Control access list log updates

  logging     Control access list logging

  resequence  Resequence Access List

OMEGA-edge(boot)(config)#ip access-list

Here is the command trying to make the ACL:

OMEGA-edge(boot)(config)#ip access-list extended eth0_in

                                        ^

% Invalid input detected at '^' marker.

This is very confusing.

Thank you for your advice on this,

Allen

Correct Answer
Giuseppe Larosa Thu, 10/11/2012 - 14:08

Hello Allen,

>> OMEGA-edge(boot)

your router hasn't loaded a full IOS image this is the meaning of the (boot), so you have a more basic problem then named extended access-list.

check with

show version

show bootvar

you need then to find out if a complete IOS image is present in flash

Hope to help

Giuseppe

apingleton Thu, 10/11/2012 - 14:12

Okay, I just reset it to defaults, here is the full show version:

Router(boot)#show version

Cisco Internetwork Operating System Software

IOS (tm) 7200 Software (C7200-KBOOT-M), Version 12.3(6), RELEASE SOFTWARE (fc3)

Copyright (c) 1986-2004 by cisco Systems, Inc.

Compiled Wed 11-Feb-04 15:56 by kellythw

Image text-base: 0x60008AF4, data-base: 0x609CA000

ROM: System Bootstrap, Version 12.2(4r)B2, RELEASE SOFTWARE (fc2)

Router uptime is 18 minutes

System returned to ROM by reload at 12:10:54 UTC Thu Oct 11 2012

System image file is "bootflash:c7200-kboot-mz.123-6.bin"

Last reload reason: Reload command

cisco 7206VXR (NPE400) processor (revision A) with 491520K/32768K bytes of memory.

Processor board ID 36577128

R7000 CPU at 350MHz, Implementation 39, Rev 3.3, 256KB L2 Cache

6 slot VXR midplane, Version 2.11

Last reset from power-on

Bridging software.

X.25 software, Version 3.0.0.

PCI bus mb0_mb1 has 400 bandwidth points

PCI bus mb2 has 0 bandwidth points

2 FastEthernet/IEEE 802.3 interface(s)

125K bytes of non-volatile configuration memory.

8192K bytes of Flash internal SIMM (Sector size 256K).

Configuration register is 0x2102

And here is the show bootvar:

Router(boot)#show bootvar

BOOT variable does not exist

CONFIG_FILE variable does not exist

BOOTLDR variable does not exist

Configuration register is 0x2102

How can I tell if this is not a full version of IOS???????

AhmedSonba Thu, 10/11/2012 - 14:21

Hello Giuseppe

Is it possible that Allen has a corrupted IOS image in his flash ? which is resulting this problem

Ahmed Sonba

Giuseppe Larosa Fri, 10/12/2012 - 03:53

Hello Allen,

>> System image file is "bootflash:c7200-kboot-mz.123-6.bin"

                                                                ^^

notice the boot in the image filename your router is not running a full IOS image, it is just a bootloader with limited functionality

post

dir bootflash:

dir slot0:

dir slot1:

dir /all

Ahmed:

the full IOS image can be missing or corrupted as you noted.

In a device like this the full IOS image is usually on a PCMCIA flash card that can be easily removed (slot0: or slot1:)

Example:

taken from a C7200 with a full IOS image (some time ago)

mclaren#sh ver

Cisco Internetwork Operating System Software

IOS (tm) 7200 Software (C7200-JK9S-M), Version 12.2(15)T14, RELEASE SOFTWARE (fc4)

Technical Support: http://www.cisco.com/techsupport

Copyright (c) 1986-2004 by cisco Systems, Inc.

Compiled Sat 28-Aug-04 16:22 by cmong

Image text-base: 0x60008954, data-base: 0x62146000

ROM: System Bootstrap, Version 11.1(13)CA, EARLY DEPLOYMENT RELEASE SOFTWARE (fc1)

>>BOOTLDR: 7200 Software (C7200-BOOT-M), Version 11.3(2)AA, EARLY DEPLOYMENT, RELEASE SOFTWARE (fc1)

mclaren uptime is 5 days, 4 hours, 59 minutes

System returned to ROM by power-on

System restarted at 11:34:22 UTC Wed Jan 5 2005

>>System image file is "slot0:c7200-jk9s-mz.122-15.T14.bin"

Hope to help

Giuseppe

apingleton Fri, 10/12/2012 - 10:02

Hello everyone,

     Just wanted to finish this up. You were right Giuseppe, it wasn't loading the actual IOS image into it.

The router was a spare of someone else in the company given to me to use and they grabbed one that had no image on it.

I've got another one now that works perfectly.

Thank both of you very much for your help with this, and your valuable time in doing so,

Allen

Actions

Login or Register to take actions

This Discussion

Posted October 11, 2012 at 11:52 AM
Stats:
Replies:9 Avg. Rating:5
Views:697 Votes:0
Shares:0
Categories: Routers
+

Related Content

Discussions Leaderboard