How to remove rules on an extended access list without removing everything

Is there a way to remove just one piece of an extended ACL without removing everything?

For example:

Extended IP access list 250
    10 permit ip 192.168.0.0 0.1.255.255 any (2 matches)
    20 permit ip 224.0.0.0 15.255.255.255 any
    30 permit ip 192.169.0.0 0.0.255.255 any
    40 deny ip any any log-input (143083 matches)

What if I only wanted to remove the "40 deny ip"? What will be the command?

This is on a 6500 chassis with sup 720.
typertecAsked:
Who is Participating?
 
atlas_shudderedConnect With a Mentor Sr. Network EngineerCommented:
A simpler way is to just use the line number

config t
ip access-list edt 250
no 10
no 30
no 40


etc.

You can use the same method to insert lines to an existing list:

20 permit ip 224.0.0.0 15.255.255.255 any
30 permit ip 192.169.0.0 0.0.255.255 any




0
 
JFrederick29Commented:
Like this:

conf t
ip access-list ext 250
no deny ip any any log-input
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.