Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

Adding to an ACL

This is already configured

ip access-list standard INCARRIER
permit 10.10.4.0 0.0.0.255
permit 10.10.204.0 0.0.0.255
permit 10.10.33.0 0.0.0.255

and I want to add this

permit 10.10.7.0 0.0.0.255

and I want it to look like this

ip access-list standard INCARRIER
permit 10.10.4.0 0.0.0.255
permit 10.10.204.0 0.0.0.255
permit 10.10.33.0 0.0.0.255
permit 10.10.7.0 0.0.0.255


would I do this


2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

or would I need to do this


2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.4.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.204.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.33.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

Thanks,

Mike

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Adding to an ACL

Mike-

You can add just the new network, no need to add them all again.


2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

Hope it helps.

4 REPLIES

Re: Adding to an ACL

Mike-

You can add just the new network, no need to add them all again.


2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

Hope it helps.

Re: Adding to an ACL

Thanks, that is what I thought but wanted to cover my bases.

One more based on that......If I wanted to add in the middle I would need to do this.....correct?

2821#config t
Enter configuration commands, one per line.  End with CNTL/Z.
2821(config)#ip access-list standard INCARRIER
2821(config-std-nacl)#permit 10.10.4.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.204.0 0.0.0.255
2821(config-std-nacl)#permit 10.10.7.0 0.0.0.255

and no need add the last permit


and the result would be

ip access-list standard INPAETEC
permit 10.10.4.0 0.0.0.255
permit 10.10.204.0 0.0.0.255
permit 10.10.7.0 0.0.0.255
permit 10.10.33.0 0.0.0.255

Mike

Re: Adding to an ACL

Mike-

Those dang standard ACLs don't have sequence numbers. The order you put them makes no difference in how they show up in the config. If you need to arrange them in a specific order you'll have to use extended ACLs.

Re: Adding to an ACL

Thanks for your help.

Mike

388
Views
5
Helpful
4
Replies