ACL practices when modifying and applying new policies
jaz0nj4ckal
Member Posts: 19 ■□□□□□□□□□
in CCNA & CCENT
Folks:
I am studying for my CCNA, and I am confused at how to manage ACL lists that are already applied to an interface.
For example: I have an ACL already applied to S0; however, I need to modify it. Cisco recommends that you disable the list first with the no ip access-group command; however, from my understanding, if I remove the list – traffic will be unfiltered. How do I modify an applied ACL and still filter traffic? Do I create another ACL to black all traffic until I modify my selected ACL?
Thank you
I am studying for my CCNA, and I am confused at how to manage ACL lists that are already applied to an interface.
For example: I have an ACL already applied to S0; however, I need to modify it. Cisco recommends that you disable the list first with the no ip access-group command; however, from my understanding, if I remove the list – traffic will be unfiltered. How do I modify an applied ACL and still filter traffic? Do I create another ACL to black all traffic until I modify my selected ACL?
Thank you
Comments
-
SteveO86
Member Posts: 1,423
Wrote this one a while back
Working with Cisco Access Control Lists / ACLs. | CCIE or Null!
You can enter ACL-Config mode and add/remove as needed by using the sequence numbers assigned to every ACL entryMy Networking blog
Latest blog post: Let's review EIGRP Named Mode
Currently Studying: CCNP: Wireless - IUWMS -
rob42
Member Posts: 423
** bump **
Some good reading here for anyone learning about ACLs
No longer an active member
