[nsp] Re: cutting and pasting access lists
Ed Ravin
eravin at panix.com
Wed Jul 23 18:58:14 EDT 2003
On Wed, Jul 23, 2003 at 01:43:51PM -0700, rpcbind at speakeasy.net wrote:
> For loading up big configs, copy ftp running-config (or even copy scp in
> later 12.2T's) is your friend. (and for this specific case, I feel compelled
> to whine some more for a modular-acl-cli akin to MQC. access-list sequencing
> takes care of small modifications, but..)
I feel compelled to point out that aclmaker is also your friend - it is
far superior to "copy ftp running-config", since it will catch any syntax
errors in the new access list before they can cause any damage. Also,
you only need to edit the access list - stuff like saying
"no ip access list extended blah" and removing and re-applying the
access list to an interface is automatically taken care of for you.
http://sourceforge.net/project/showfiles.php?group_id=25401&release_id=77050
-- Ed (aclmaker author and occasional evangelist thereof)
PS: since aclmaker waits for a new prompt after sending each line of
the ACL, it might be immune to the cut-and-paste bug described earlier
in the thread.
> On Wed, 23 Jul 2003, Christopher J. Wolff wrote:
>
> > It's very nice to be able to cut and paste a long ACL like the bogon
> > list rather than type the whole thing in when you want to modify it.
More information about the cisco-nsp
mailing list