Cisco Cisco IOS Software Release 12.2(1)T

IP Access List Entry Sequence Numbering

How to Use Sequence Numbers in an IP Access List

Cisco IOS Release 12.2(14)S, 12.2(15)T, and 12.3(2)T

sequence-number permit protocol source source-wildcard destination destination-wildcard
[precedence precedence] [tos tos] [log] [time-range time-range-name] [fragments]

sequence-number deny source source-wildcard

sequence-number deny protocol source source-wildcard destination destination-wildcard
[precedence precedence] [tos tos] [log] [time-range time-range-name] [fragments]

Repeat Step 5 and/or Step 6 as necessary, adding statements by sequence number where you
planned. Use the no sequence-number command to delete an entry.

end

show ip access-lists access-list-name

DETAILED STEPS

Command or Action

Purpose

Step 1

enable

Example:

Router> enable

Enables privileged EXEC mode. Enter your password if
prompted.

Step 2

configure

terminal

Example:

Router# configure terminal

Enters global configuration mode.

Step 3

ip access-list resequence

access-list-name

starting-sequence-number increment

Example:

Router(config)# ip access-list resequence kmd1

100 15

Resequences the specified IP access list using the starting
sequence number and the increment of sequence numbers.

•

This example resequences an access list named kmd1.
The starting sequence number is 100 and the increment
is 15.

Step 4

ip access-list

{standard | extended}

access-list-name

Example:

Router(config)# ip access-list standard kmd1

Specifies the IP access list by name and enters named access
list configuration mode.

•

If you specify standard, make sure you subsequently
specify permit and/or deny statements using the
standard access list syntax.

•

If you specify extended, make sure you subsequently
specify permit and/or deny statements using the
extended access list syntax.