From: Zafar Khan (mahaguru@gmail.com)
Date: Sat Jan 29 2005 - 03:01:45 GMT-3
Here's the answer:
http://www.groupstudy.com/archives/ccielab/200406/msg01743.html
For a detailed description, download the cisco authored pdf
"Implementing Network Access Control Phase One Configuration and
Deployment " . its a > 3 meg file
HTH
Zafar
On Fri, 28 Jan 2005 12:19:02 -0500, ccie2be <ccie2be@nyc.rr.com> wrote:
> RE: 3550 can't get rid of acl -- very weirdThanks, guess it's time to call
> pest control.
>
>
> ----- Original Message -----
> From: Richard Dumoulin
> To: ccie2be ; Group Study
> Sent: Friday, January 28, 2005 12:12 PM
> Subject: RE: 3550 can't get rid of acl -- very weird
>
> Someone answered this some time ago. It is a bug,
>
> -- Richard
>
> -----Original Message-----
> From: ccie2be [mailto:ccie2be@nyc.rr.com]
> Sent: Friday, January 28, 2005 4:42 PM
> To: Group Study
> Subject: 3550 can't get rid of acl -- very weird
>
> Hey guys,
>
> Has this ever happened to you?
>
> When I do a show run on this 3550, there's no acl in the config.
>
> But, when I do a show access-list, I get the following:
>
> SW1#sh access-list
> Extended IP access list sl_def_acl
> 10 deny tcp any any eq telnet
> 20 deny tcp any any eq www
> 30 deny tcp any any eq 22
> 40 permit ip any any
> SW1#
>
> I tried to delete this acl, but it won't go away.
>
> SW1(config)#no ip access-list ext sl_def_acl
> SW1(config)#
> SW1#s
> 3w3d: %SYS-5-CONFIG_I: Configured from console by console
> SW1#sh access-list
> Extended IP access list sl_def_acl
> 10 deny tcp any any eq telnet
> 20 deny tcp any any eq www
> 30 deny tcp any any eq 22
> 40 permit ip any any
> SW1#
>
> Anybody have any idea what's going on?
>
> TIA, Tim
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> **********************************************************************
> Any opinions expressed in the email are those of the individual and not
> necessarily the company. This email and any files transmitted with it are
> confidential and solely for the use of the intended recipient. If you are not
> the intended recipient or the person responsible for delivering it to the
> intended recipient, be advised that you have received this email in error and
> that any dissemination, distribution, copying or use is strictly prohibited.
>
> If you have received this email in error, or if you are concerned with the
> content of this email please e-mail to: e-security.support@vanco.info
>
> The contents of an attachment to this e-mail may contain software viruses
> which could damage your own computer system. While the sender has taken every
> reasonable precaution to minimise this risk, we cannot accept liability for
> any damage which you sustain as a result of software viruses. You should carry
> out your own virus checks before opening any attachments to this e-mail.
> **********************************************************************
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Wed Feb 02 2005 - 22:10:27 GMT-3