edit access list

[lancepr]

Hello all,

I have a cisco 3640 on our network that is running access lists.
I want to change some of them, how can I do it?
I have been told a couple ways, delete it then type it line by line and tftp, which I am not very familiar with. What is simplest way to update lists?

here is an one of the lists I want to edit

ip access-list extended WorkstationFW
permit ip 192.1.1.0 0.0.0.255 any
permit ip 192.1.2.0 0.0.0.255 any
permit ip 192.1.3.0 0.0.0.255 any
permit ip 192.1.9.0 0.0.0.127 any
deny udp any any eq 135 log
deny udp any any eq netbios-ns log
deny udp any any eq netbios-dgm log
deny udp any any eq netbios-ss log
deny tcp any any eq 135 log
deny tcp any any eq 137 log
deny tcp any any eq 138 log
deny tcp any any eq 139 log
permit ip any any


Thanks,
Lance

 

[ChrisAC]

The best way would be to copy it to notepad or similar text editor of your choice and add the lines there. Change the access list number and paste it back in. Then change the access group statement on the interface that the ACL is applied to so that the old ACL is replaced with the new one. If it works like you want it to then you can remove the old ACL. If not then you can just re-apply the old ACL which will still exist in the config.

Chris.


**********************
Chris Andrew, CCNA, CCSA
chris@iproute.co.uk
**********************