remove a policy-map from fwsm

hedyeh razazan · ‎01-09-2012

Hi,

i defined a policy map on FWSM but i can not remove it. i can remove the any other policy-map except this one.

i dont know why?

6513-FWSM/colocation(config)# no policy-map pna-co

ERROR: policy-map pna-co is being configured and hence cannot be removed.

Marvin Rhoads · ‎01-10-2012

You haven't by chance called it out in a class-map have you? If so, try removing the reference there first.

hedyeh razazan · ‎01-11-2012

there is no reference to this policy-map

Julio Carvajal · ‎01-11-2012

Hello,

Can you provide the show run policy map please!

Julio

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

hedyeh razazan · ‎01-14-2012

access-list outside_mpc extended permit tcp any host 10.4.2.1 eq www

class-map inspection_default

match default-inspection-traffic

class-map pna-class

match access-list outside_mpc

!

policy-map pna-co

class pna-class

set connection conn-max 500

policy-map CSM_POLICY_MAP_global_2

class inspection_default

inspect ftp

inspect pptp

inspect icmp error

inspect icmp

!

service-policy CSM_POLICY_MAP_global_2 global

ajay chauhan · ‎01-14-2012

policy-map pna-co

class pna-class

set connection conn-max 500

Frist remove the class-map pna-class asociated with policy-map thn remove policy-map.

Thanks

Ajay

hedyeh razazan · ‎01-14-2012

did not work.

6513-FWSM/colocation(config)# no class-map pna-class

ERROR: % class-map pna-class is being used

6513-FWSM/colocation(config)# policy-map pna-co

6513-FWSM/colocation(config-pmap)# no cl

6513-FWSM/colocation(config-pmap)# no cla

6513-FWSM/colocation(config-pmap)# no class pna-class

6513-FWSM/colocation(config-pmap)# exit

6513-FWSM/colocation(config)# no class pna-class

6513-FWSM/colocation(config)# no policy-map pna-co

ERROR: policy-map pna-co is being configured and hence cannot be removed.

thanks,

Hedye