Usage Guidelines
The resequence command allows you to reassign sequence numbers to the rules of an ACL or time range.
The new sequence number for the first rule is determined by the starting-sequence-number argument. Each
additional rule receives a new sequence number determined by the increment argument. If the highest sequence
number would exceed the maximum possible sequence number, then no sequencing occurs and the following
message appears:
ERROR: Exceeded maximum sequence number.
The maximum sequence number is 4294967295.
This command does not require a license.
Examples
This example shows how to resequence an IPv4 ACL named ip-acl-01 with a starting sequence number of
100 and an increment of 10, using the show ip access-lists command to verify sequence numbering before
and after the use of the resequence command:
switch# configure terminal
switch(config)# show ip access-lists ip-acl-01
IP access list ip-acl-01
7 permit tcp addrgroup lab-machines any
10 permit udp addrgroup lab-machines any
13 permit icmp addrgroup lab-machines any
17 deny igmp any any
switch(config)# resequence ip access-list ip-acl-01 100 10
switch(config)# show ip access-lists ip-acl-01
IP access list ip-acl-01
100 permit tcp addrgroup lab-machines any
110 permit udp addrgroup lab-machines any
120 permit icmp addrgroup lab-machines any
130 deny igmp any any
Related Commands
DescriptionCommand
Configures an ARP ACL.arp access-list
Configures an IPv4 ACL.ip access-list
Configures an IPv6 ACL.ipv6 access-list
Configures a MAC ACL.mac access-list
Displays all ACLs or a specific ACL.show access-lists
Cisco Nexus 7000 Series Security Command Reference
622
R Commands
resequence
To Next Page
Loading...
