Re: ACL from Hell

jblancha29 · ‎03-02-2004

Hello All,

I have recently begun working here and the person before me setup all these acl's on the router and has everything shut down. I am getting a firewall and would like to set this router to just route and not have all these rules and ports blocked. However, I have been unsuccessfull in removing the acl's or editing them, i MUST be doing something wrong.

If I type: no access-list name at the prompt it gives me an invaild marker @ the access line.

I tried to tftp into it to edit it and it times out.

Can i reset this box to factory or upgrade the IOS to reset it.

This has been ongoing and I need these ports OPEN

Thanks,

John

rajesh444 · ‎03-02-2004

John,

If nothing else, you should be able to console into the router and remove ACLs applied to the interfaces using:

1.Router(config-if)#no access-class

performed under Interface config mode

followed by

2. Router(config)#no access-list

performed under global config mode

smebbin · ‎03-03-2004

If my memory serves me correctly... Shouldn't the string be "no IP access 101"? I think the IP was missed.

-Brandon

jamey · ‎03-03-2004

use this command:

no ip access-list extended XXX

or it could be

no ip access-list standard XXX

Where XXX is the name of the ACL

-HTH

Report Inappropriate Content · ‎03-09-2004

sh run int xxxx

this will show you how it's applied, then just "no" the same syntax.

Craig Norborg · ‎03-10-2004

a

Report Inappropriate Content · ‎03-11-2004

Hi,

If your access-list is named, then you must be using an extended one. I think the syntax is:

ip access-list extended

Try with a 'no' before it.