Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Access-List help please

I am trying to add an outbound access list rule to permit ftp from a specific host. No matter what I try the rule in being appended to the list of rules such that it comes after the default deny all policy.

Any ideas? Your help is greatly appreciated.

2 REPLIES
New Member

Re: Access-List help please

Access lists are checked in the order the statements were added. You can't just add a line.

Try a show running-config. Highlight the access list. Copy it to the clipboard. Paste it into a notepad type application. Arrange the lines in the access list to the order you want them. Highlight and copy. On the router, delete the original access-list and paste the modified one back in.

New Member

Re: Access-List help please

In order for this to be the case you would have to be logging your denied traffic, otherwise there would be no way the new line could append before the deny all line, correct? At any rate, if you use named access-lists instead of numbered you can remove any line in the list...

take care

todd

78
Views
0
Helpful
2
Replies
CreatePlease login to create content