Re: MAC address access-list in router 2600

ppaulet · ‎10-25-2005

Is it possible to erase all de Mac address access-list 700 when i delete only one entry of the access-list 700?. Like this:

no access-list 700 permit 0000.1230.4567

The complete access-list 700 dissapear??.

And, if this is true, how could I delete entries that are not useful anymore?.

THANKS.

thisisshanky · ‎10-25-2005

I believe these acls are like standard acls, where you do a "no access-list 700 permit <>" it will remove the whole thing. The only way to solve this is to

a. select all acl statements and paste it into notepad

b. do a no acl 700 on the router

c. edit the acl statements in notepad with the unwanted lines removed

d. paste the edited acl statements into router.

e. wr mem

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus

ppaulet · ‎10-25-2005

THANKS for your answer.

BUT, if i do that, the SNA goes down, then i have a bigger problem.

These MACs in the router, are used for Online transactions.

Could I do a no acl 700, then paste the acls without breaking the SNA?.

THANKS.

pd: in a pix firewall i can remove an entry of the acls without removing the whole list ...

ppaulet · ‎10-26-2005

And, which would be the best practice? :

- Remove useful entries.

- Do nothing and having more and more entries.

What do you use to do??

Thanks.