Hello ,
In my humble experience , what I have done ( and I think has
worked for me ) is applying the new access-list with a different number ,
that is assuming you already have an access-list working let's say
access-list 101 and you would like to upgrade or modidfy it, edit your
current access-list (101) make all the changes and name it with different
number ( I usually name it with the following number , which in this case
would be access-list 102 ) . Then get to your router and just paste it .
That way , you will have two different access-lists working ( 101 & 102 ),
then all you have to do is clear the access-list 101 with the command no
access-list 101 and you are ready to go, you will have your access-list
working without clearing the first one and leaving you open to the "dark
side of the force " at all. I wish to remind you that when you apply your
new access-list , make sure that you do no type the command it to cancel
or clear your current one ( DO NOT TYPE NO ACCESS-LIST 101 ) because as I
am sure you all know , you will kill your actual access-list and it will
do exactly what we do not want it to do. ( cancel your current access-list
and leave you open for a while, 1 or 2 seconds, depending on the size of
your access-list.
Cheers,
*******************************************************************************
Ing. Gerardo Soto Casados
Compu-Redes
Labastida # 37 Esq. Tijuana
San Martin Texmelucan Puebla
Tel. y Fax (91248) 45-888
e-mail: [EMAIL PROTECTED]
http://www.compu-redes.net.mx
*******************************************************************************
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
