For Cisco we use the folling methode:
Cut & past your acl into a notepad.
Rename the acl number
Make your changes
Cut & past the new acl into your device
Active the new acl on the interface
Remove the old acl form the interface
On foundry: hopefully the same:-)
Regards
Gerlof
-----Original Message-----
From: foundry-nsp-bounces@puck.nether.net
[mailto:foundry-nsp-bounces@puck.nether.net] On Behalf Of Michael Renner
Sent: vrijdag 5 maart 2004 20:14
To: foundry-nsp@puck.nether.net
Subject: [f-nsp] editing accesslists w/o causing interrupts
Hi!
Is it possible to edit accesslists without having to move the
"permit/deny any" entries "down" in the access-list manually (e.g. if
you've added new entries)? If you move the permit/deny any entries by
hand you could cause short disruptions in service (between the e.g. "no
access 20 permit any" "access 20 permit any" commands). A workaround
would be to temporarily remove the access-list from the given service,
but when you use it in multiple spots in the config, this can be quite
cumbersome.
Any ideas?
--
best regards,
Michael Renner
Preisvergleich Internet Services AG
Franzensbr?ckenstra?e 8/2/16, A-1020 Wien
Tel: +43 1 5811609 56
Fax: +43 1 5811609 55 _______________________________________________
foundry-nsp mailing list
foundry-nsp@puck.nether.net
http://puck.nether.net/mailman/listinfo/foundry-nsp
Cut & past your acl into a notepad.
Rename the acl number
Make your changes
Cut & past the new acl into your device
Active the new acl on the interface
Remove the old acl form the interface
On foundry: hopefully the same:-)
Regards
Gerlof
-----Original Message-----
From: foundry-nsp-bounces@puck.nether.net
[mailto:foundry-nsp-bounces@puck.nether.net] On Behalf Of Michael Renner
Sent: vrijdag 5 maart 2004 20:14
To: foundry-nsp@puck.nether.net
Subject: [f-nsp] editing accesslists w/o causing interrupts
Hi!
Is it possible to edit accesslists without having to move the
"permit/deny any" entries "down" in the access-list manually (e.g. if
you've added new entries)? If you move the permit/deny any entries by
hand you could cause short disruptions in service (between the e.g. "no
access 20 permit any" "access 20 permit any" commands). A workaround
would be to temporarily remove the access-list from the given service,
but when you use it in multiple spots in the config, this can be quite
cumbersome.
Any ideas?
--
best regards,
Michael Renner
Preisvergleich Internet Services AG
Franzensbr?ckenstra?e 8/2/16, A-1020 Wien
Tel: +43 1 5811609 56
Fax: +43 1 5811609 55 _______________________________________________
foundry-nsp mailing list
foundry-nsp@puck.nether.net
http://puck.nether.net/mailman/listinfo/foundry-nsp