Technical data
60 ServerIron ADX NAT64 Configuration Guide
53-1002288-02
Modifying ACLs
4
DRAFT: BROCADE CONFIDENTIAL
copy tftp running-config <tftp-ip-addr> <filename>
NOTE
This command will be unsuccessful if you place any commands other than access-list and end
(at the end only) in the file. These are the only commands that are valid in a file you load using
the copy tftp running-config… command.
7. To save the changes to the device’s startup-config file, enter the following command at the
Privileged EXEC level of the CLI.
write memory
Here is a complete example of an ACL configuration file.
no access-list 1
no access-list 101
access-list 1 deny host 209.157.22.26 log
access-list 1 deny 209.157.22.0 0.0.0.255 log
access-list 1 permit any
access-list 101 deny tcp any any eq http log
end
NOTE
Do not place other commands in the file. The Brocade device reads only the ACL information in the
file and ignores other commands, including ip access-group commands. To assign ACLs to
interfaces, use the CLI.
Adding, inserting, replacing, or deleting a comment
You can add, insert, replace, or delete comments to an ACL entry. First enter a show command as
discussed in “Displaying a list of ACL entries” on page 63 to determine the line number of the entry
you want to update or where you want to insert the new ACL entry. Then enter a command as
shown in one of the two sections below.
Numbered ACL: adding or replacing a comment
To add a comment to an ACL entry in a numbered ACL, do the following.
1. Use the show access-list to display the entries in an ACL.
Example
ServerIronADX(config)# show access-list 99
Standard IP access-list 99
deny host 1.2.4.5
permit host 5.6.7.8
permit any
2. To add the comment "Permit all users" to the second entry in the list, enter a command such as
the following.
ServerIronADX(config)# access-list 99 insert 2 remark Permit all users
3. Entering a show access-list command displays the following.