Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Chris Miller on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

How to remove access list entry? 1

Status
Not open for further replies.
jt123

jt123

IS-IT--Management
Jun 10, 2002
1
US
Greetings all,

Can someone please tell me how to remove line 7 from the following Cisco configuration?

1 access-list 101 permit tcp any any established
2 access-list 101 permit icmp any any echo
3 access-list 101 permit icmp any any echo-reply
4 access-list 101 permit icmp any any packet-too-big
5 access-list 101 permit icmp any any time-exceeded
6 access-list 101 permit icmp any any unreachable
7 access-list 101 permit icmp any any echo-reply log

I've tried "no access-list 101 permit icmp any any echo-reply log" but that deletes the whole access list 101. Is there a way to erase just a single entry?

Thanks,

JT
 
Sort by date Sort by votes
Okay I went through this as well. Had a heck of a time trying to figure it out so I'll tell you the way I do it...

Connect to your router through a Telnet connection.
do a "copy run tftp" and copy the running config to your desktop.

Open the file in Wordpad and edit the line you want.

Highlight just the entire list and choose copy.....

Go back to your Telnet session and delete the access list. then past what you have on the clipboard (what you copied from wordpad) into the telnet session and that is it.

Not a real easy way to do it but you'll get real use to it once you do it all the time like I do.

Hope this helps...

david e
*end users are just like computers, some you can work with...others just need a simple reBOOTing to fix their problems.*
 
Upvote 0 Downvote
To answer you question in your post..... No it's all or nothing on the "No access-list" command. david e
*end users are just like computers, some you can work with...others just need a simple reBOOTing to fix their problems.*
 
Upvote 0 Downvote
From config t do the following:

Rotuer(config)#ip access-list extended 101
Router(config-ext-nacl)#no permit icmp any any echo-reply log
Router(config-ext-nacl)#end

That will allow you to remove the one line.
 
Upvote 0 Downvote
Hey JT let me know if this works, that would save me a lot of time...

david e
*end users are just like computers, some you can work with...others just need a simple reBOOTing to fix their problems.*
 
Upvote 0 Downvote
ShaunG,

That's cool, I'll have to try this in the future......All the books that I had said it couldn't be done. Thanks for the tip.. david e
*end users are just like computers, some you can work with...others just need a simple reBOOTing to fix their problems.*
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

Skip Rango
  • Locked
  • Question
how to backup cisco sg500-52p switch
Replies
1
Views
347
madwok
madwok
Luzbel
  • Locked
  • Question
Connecting HVAC controller to network
Replies
0
Views
258
Luzbel
Luzbel
WinstonCH
  • Locked
  • Helpful tip
What is wrong with the diagram, there are people who will help to fix it? How do i do the configurat 1
Replies
1
Views
485
BIS
BIS
PThomp3344
  • Locked
  • Question
Trying to connect to Cisco Unified Controller web interface: UC520W-16U-4FXO-K9
Replies
1
Views
303
bdk76
bdk76
DTGMI
  • Locked
  • Question
Moving from Juniper SRX-240 to Cisco ??
Replies
0
Views
191
DTGMI
DTGMI

Part and Inventory Search

Sponsor

Back
Top