Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Remove entry from FWSM context cfg

I want to remove 2 entries from a context cfg for an ACL and cannot find a way to do it. Here is the cfg:

access-list PERMIT-PRINT extended permit ip 10.10.50.0 255.255.254.0 165.24.146.90 255.255.255.240

access-list PERMIT-PRINT extended permit ip host 90.132.101.16 host 168.34.266.70

access-list PERMIT-PRINT extended deny ip host 90.132.101.16 host 168.34.266.70

The last 2 lines are the ones and when I do a sh access-list it shows them as line 9 & 10 in sequence.

Thanks for any help.

6 REPLIES
New Member

Re: Remove entry from FWSM context cfg

Which version of FWSM software are you using?

New Member

Re: Remove entry from FWSM context cfg

We are using:

FWSM Firewall Version 3.1(3)

Device Manager Version 5.0(1)F

New Member

Re: Remove entry from FWSM context cfg

You will be able to delete these entries using keyword "no" in front of them in global configuration mode on the command line

no access-list PERMIT-PRINT extended permit ip host 90.132.101.16 host 168.34.266.70

no access-list PERMIT-PRINT extended deny ip host 90.132.101.16 host 168.34.266.70

New Member

Re: Remove entry from FWSM context cfg

I tried that and got the following error:

ADC-FW-CORE/3RD-PARTY-VENDORS(config)# no access-list PERMIT-PRINT extended pe$

no access-list PERMIT-PRINT extended permit ip host 90.132.101.16 host 168.34.26

^6.70

ERROR: % Invalid input detected at '^' marker.

New Member

Re: Remove entry from FWSM context cfg

This is unusual. I would try a "?" just at the error marker to see what it is expecting.

Other than that another option is to paste the whole access-list into a text document. Do a "clear configure access-list PERMIT-PRINT". The relative access-group statement may also be removed by this. Then paste in the statements you want to keep and reapply the access-group.

However, you may need a service window to do the latter.

New Member

Re: Remove entry from FWSM context cfg

That is what I thought you may say, and yup in case of service affecting I may have to setup a change window. Thanks for your help.

299
Views
0
Helpful
6
Replies
CreatePlease to create content