Specifications
clear security acl
Chapter 14
Security ACL Commands
454
clear security acl
Clears a specified security ACL, an access control entry (ACE), or all security
ACLs, from the edit buffer. When used with the command commit security acl,
clears the ACE from the running configuration.
Syntax
clear security acl {acl-name | all} [editbuffer-index]
Defaults
None.
Access
Enabled.
Usage
This command deletes security ACLs only in the edit buffer. You must
use the commit security acl command with this command to delete the ACL or
ACE from the running configuration and nonvolatile storage.
The clear security acl command deletes a security ACL, but does not stop its
current filtering function if the ACL is mapped to any virtual LANs (VLANs),
ports, or virtual ports, or if the ACL is applied in a Filter-Id attribute to an
authenticated user or group of users with current sessions.
Examples
The following commands display the current security ACL
configuration, clear acl_133 in the edit buffer, commit the deletion to the running
configuration, and redisplay the ACL configuration to show that it no longer
contains acl_133:
PROMPT# show security acl info all
ACL information for all
set security acl ip acl_133 (hits #1 0)
---------------------------------------------------------
1. deny IP source IP 192.168.1.6 0.0.0.0 destination IP any
set security acl ip acl_134 (hits #3 0)
---------------------------------------------------------
1. permit IP source IP 192.168.0.1 0.0.0.0 destination IP any enable-hits
acl-name Name of an existing security ACL to clear. ACL names
start with a letter and are case-insensitive.
all Clears all security ACLs.
editbuffer-index Number that indicates which access control entry
(ACE) in the security ACL to clear. If you do not
specify an ACE, all ACEs are cleared from the ACL.