Re: How to clear Reflexive ACL??

From: Farrukh Haroon (farrukhharoon@gmail.com)
Date: Sun Jan 29 2006 - 12:55:51 GMT-3

• Next message: Church, Chuck: "RE: Security written (350-018) / recert"
• Previous message: Scott Morris: "RE: Should you be able to ping backbone routers on the LAB?"
• Maybe in reply to: Mushtaq A. Khan: "How to clear Reflexive ACL??"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

i dont think there is any command to clear a temp. acl, what might work is -
setting the timer which defaults to 300 seconds to something much lower,
this way the acl is going to be removed pretty quickly, and then you can
reset the timer to its default once the acl gets cleared

*ip reflexive-list timeout* *seconds*

but of course even for that you need to make sure that the timer you set is
very less, before a packet arrives matching the required criteria and the
timer gets refreshed again

HTH

On 1/29/06, Mushtaq A. Khan <mak.ccie2b@gmail.com> wrote:
>
> Hi Group,
>
> I'm curious to know if there is a way to clear Reflexive ACL or we need to
> make till it clears out itself. All I could find is to clear the counters
>
> Router#clear ip access-list ?
> counters Clear access list counters
> dynamic Internal dynamic ACLs
>
> Router#clear ip access-list dynamic ?
> counters Clear access list counters
>
>
> TIA,
> Mushtaq

• Next message: Church, Chuck: "RE: Security written (350-018) / recert"
• Previous message: Scott Morris: "RE: Should you be able to ping backbone routers on the LAB?"
• Maybe in reply to: Mushtaq A. Khan: "How to clear Reflexive ACL??"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Wed Feb 01 2006 - 07:45:50 GMT-3