cancel
Showing results for 
Search instead for 
Did you mean: 

Unable to remove application-priority under access-list zone (default priority unknown application) – Module acl configurations

Unable to remove application-priority under access-list zone (default priority unknown application) – Module acl configurations

ASAB
New Contributor

Hello Everyone,

I am unable to remove configurations under access-list zone application priority for specific applications, i checked the topic How to remove application access-list under system zone that is seen under "show configuration acl" ... and i figured out the default priority for many of them since there is no good reference to the default priority of applications.

Now the following applications I am unable to set them to their default priority (to remove them from showing under acl module), i tried all possible priorities but they do not disappear.

#cmd: config access-list zone SYSTEM app <app-name> application-priority <default-priority>

  1. FDB
  2. Mrp
  3. ElrpHwAssist
  4. Dot1Ag
  5. Dot1AgDefault
  6. SlppGuard

The table does not take priority less than 23 any priority outside 23 is brought to 23 as the end record of the table.

Not aware much of this ACL configurations and even do not use it regularly,

Thanks for your help 

1 ACCEPTED SOLUTION

CThompsonEXOS
Extreme Employee

Hi,

What version of firmware are you on?

On 30.7.2.1 I see this below:

 X670G2-48x-4q.4 # show conf acl
#
# Module acl configuration.
#



configure access-list zone SYSTEM application Mrp application-priority 2
configure access-list zone SYSTEM application IpSecurity application-priority 3
configure access-list zone SYSTEM application FIPSnooping application-priority 4
configure access-list zone SYSTEM application Dot1Ag application-priority 5
configure access-list zone SYSTEM application Dot1AgDefault application-priority 6
configure access-list zone SYSTEM application NetLogin application-priority 7
configure access-list zone SYSTEM application FDB application-priority 8
configure access-list zone SYSTEM application HealthCheckLAG application-priority 9
configure access-list zone SYSTEM application IdentityManager application-priority 10
configure access-list zone SYSTEM application VMTracking application-priority 11
configure access-list zone SYSTEM application PolicyManager application-priority 12
configure access-list zone SYSTEM application Policy application-priority 13
configure access-list zone SYSTEM application L2PT_PF application-priority 14
configure access-list zone SYSTEM application Snmp application-priority 17
configure access-list zone SYSTEM application Telnet application-priority 18
configure access-list zone SYSTEM application Http application-priority 19
configure access-list zone SYSTEM application Ssh2 application-priority 20
configure access-list zone SYSTEM application VlanManager application-priority 21
configure access-list zone SYSTEM application SlppGuard application-priority 22
configure access-list zone SYSTEM application ElrpHwAssist application-priority

Thanks,

Chris Thompson

View solution in original post

1 REPLY 1

CThompsonEXOS
Extreme Employee

Hi,

What version of firmware are you on?

On 30.7.2.1 I see this below:

 X670G2-48x-4q.4 # show conf acl
#
# Module acl configuration.
#



configure access-list zone SYSTEM application Mrp application-priority 2
configure access-list zone SYSTEM application IpSecurity application-priority 3
configure access-list zone SYSTEM application FIPSnooping application-priority 4
configure access-list zone SYSTEM application Dot1Ag application-priority 5
configure access-list zone SYSTEM application Dot1AgDefault application-priority 6
configure access-list zone SYSTEM application NetLogin application-priority 7
configure access-list zone SYSTEM application FDB application-priority 8
configure access-list zone SYSTEM application HealthCheckLAG application-priority 9
configure access-list zone SYSTEM application IdentityManager application-priority 10
configure access-list zone SYSTEM application VMTracking application-priority 11
configure access-list zone SYSTEM application PolicyManager application-priority 12
configure access-list zone SYSTEM application Policy application-priority 13
configure access-list zone SYSTEM application L2PT_PF application-priority 14
configure access-list zone SYSTEM application Snmp application-priority 17
configure access-list zone SYSTEM application Telnet application-priority 18
configure access-list zone SYSTEM application Http application-priority 19
configure access-list zone SYSTEM application Ssh2 application-priority 20
configure access-list zone SYSTEM application VlanManager application-priority 21
configure access-list zone SYSTEM application SlppGuard application-priority 22
configure access-list zone SYSTEM application ElrpHwAssist application-priority

Thanks,

Chris Thompson

GTM-P2G8KFN