begginer with access-list... unable to disable/remove

  • 0
  • 1
  • Question
  • Updated 1 year ago
  • Answered
Hi
I want try some ACL and get stucked.
We have summit x350 (ver.12.6.2.10).
based on https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-create-an-ACL-rule-to-block-IPv6-tr... I create policy "block_any_ipv6.pol"

******* start of block_any_ipv6.pol ************
entry block_any_v6 {
   if {
      source-address 0:: / 0;
   }
   then {
      deny;
   }
}
******* end of block_any_ipv6.pol ************

then:
configure access-list block_any_ipv6 port 21
then my connection was lost.
port 21 is tagged port for ~7vlans

switch1.12 # show access-list
Vlan Name Port Policy Name Dir Rules Dyn Rules
=================================================================== * 21 block_any_ipv6 ingress 1 0
* switch1.13 # configure access-list delete block_any_ipv6
                                            ^
%% Invalid input detected at '^' marker.

Why I can't delete access-list on port 21?
What I don't understand?
How I can manage this in correct way and get port 21 "back in time" before this CLI
 'configure access-list block_any_ipv6 port 21' 
Photo of modris bernands

modris bernands

  • 610 Points 500 badge 2x thumb

Posted 1 year ago

  • 0
  • 1
Photo of Ron Huygens

Ron Huygens, Employee

  • 2,878 Points 2k badge 2x thumb
The correct way to delete a ACL is:
'unconfigure access-list block_any_ipv6' 
Photo of modris bernands

modris bernands

  • 610 Points 500 badge 2x thumb
ThankYou!
and with correct command 'unconfigure' I found correct topic https://gtacknowledge.extremenetworks.com/articles/How_To/How-to-remove-an-access-list
ehh...