Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

help!about reflect acl!

ip access-list extended admin

permit tcp 192.168.0.0 0.0.255.255 any reflect hr

permit udp 192.168.0.0 0.0.255.255 any reflect hr

permit ip any any

permit icmp any any

ip access-list extended test

evaluate admin

then there is an error£º

access-list type conflicts with prior definition

this test acl failed,can't see it via sho run

1 REPLY
VIP Purple

Re: help!about reflect acl!

Hello Jeff,

your evaluate statement has to be followed by whatever you have configured after the reflect statement. So your config would look like this:

ip access-list extended admin

permit tcp 192.168.0.0 0.0.255.255 any reflect hr

permit udp 192.168.0.0 0.0.255.255 any reflect hr

permit ip any any

permit icmp any any

ip access-list extended test

evaluate hr

HTH,

Georg

422
Views
0
Helpful
1
Replies
CreatePlease login to create content