HPE Community
Comware Based
1822147 Members
3965 Online
109640 Solutions
New Discussion

Can't remove ACL rule in 5500

 
thomashugo
New Member

‎02-10-2010 02:44 PM

‎02-10-2010 02:44 PM

Can't remove ACL rule in 5500

My company recently took over support for a client using a 5500G-EI and a few 4500's around for their network. The previous IT guys setup a bunch of ACLs restricting traffic between a number of VLANs.



 



Currently we have a 10.0.0.0/24 subnet for one set of users and a 192.168.248.0/22 subnet for printers. The ACL for the printer subnet is setup as User Config and it denies UDP, ICMP, and TCP traffic from the printer subnet to the 10. subnet.



We want to blow away these rules to allow scanning from the Printer subnet.



Attempting to delete or modify the rules results in a "...rule X has been applied by asic or qos-profile, can no be deleted or changed!" error.



There is nothing in the qos related to either subnet or any of the advanced ACLs that are setup.



How can I find what is preventing the rule removal?



 



Thanks

0 Kudos
3 REPLIES 3
Fred_Mancen_1
Super Advisor

‎02-11-2010 06:31 AM

‎02-11-2010 06:31 AM

Re: Can't remove ACL rule in 5500

At first you need to remove the qos-profile from the interfaces where the rule is applied; before you need to delete the ACL binded to the qos-profile and then you could delete the ACL, if needed.



HTH



Regards,
Fred Mancen
0 Kudos
thomashugo
New Member

‎02-11-2010 11:58 AM

‎02-11-2010 11:58 AM

Re: Can't remove ACL rule in 5500

I checked the qos-profile, and I am not seeing the acl in question being applied.



 



The rules:





<meta content="text/html; charset=utf-8" http-equiv="Content-Type" />

<meta content="Word.Document" name="ProgId" />

<meta content="Microsoft Word 12" name="Generator" />

<meta content="Microsoft Word 12" name="Originator" />









Normal

0









false

false

false



EN-US

X-NONE

























































DefSemiHidden="true" DefQFormat="false" DefPriority="99"

LatentStyleCount="267">


UnhideWhenUsed="false" QFormat="true" Name="Normal" />


UnhideWhenUsed="false" QFormat="true" Name="heading 1" />






































UnhideWhenUsed="false" QFormat="true" Name="Title" />




UnhideWhenUsed="false" QFormat="true" Name="Subtitle" />


UnhideWhenUsed="false" QFormat="true" Name="Strong" />


UnhideWhenUsed="false" QFormat="true" Name="Emphasis" />


UnhideWhenUsed="false" Name="Table Grid" />




UnhideWhenUsed="false" QFormat="true" Name="No Spacing" />


UnhideWhenUsed="false" Name="Light Shading" />


UnhideWhenUsed="false" Name="Light List" />


UnhideWhenUsed="false" Name="Light Grid" />


UnhideWhenUsed="false" Name="Medium Shading 1" />


UnhideWhenUsed="false" Name="Medium Shading 2" />


UnhideWhenUsed="false" Name="Medium List 1" />


UnhideWhenUsed="false" Name="Medium List 2" />


UnhideWhenUsed="false" Name="Medium Grid 1" />


UnhideWhenUsed="false" Name="Medium Grid 2" />


UnhideWhenUsed="false" Name="Medium Grid 3" />


UnhideWhenUsed="false" Name="Dark List" />


UnhideWhenUsed="false" Name="Colorful Shading" />


UnhideWhenUsed="false" Name="Colorful List" />


UnhideWhenUsed="false" Name="Colorful Grid" />


UnhideWhenUsed="false" Name="Light Shading Accent 1" />


UnhideWhenUsed="false" Name="Light List Accent 1" />


UnhideWhenUsed="false" Name="Light Grid Accent 1" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 1" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 1" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 1" />




UnhideWhenUsed="false" QFormat="true" Name="List Paragraph" />


UnhideWhenUsed="false" QFormat="true" Name="Quote" />


UnhideWhenUsed="false" QFormat="true" Name="Intense Quote" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 1" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 1" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 1" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 1" />


UnhideWhenUsed="false" Name="Dark List Accent 1" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 1" />


UnhideWhenUsed="false" Name="Colorful List Accent 1" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 1" />


UnhideWhenUsed="false" Name="Light Shading Accent 2" />


UnhideWhenUsed="false" Name="Light List Accent 2" />


UnhideWhenUsed="false" Name="Light Grid Accent 2" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 2" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 2" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 2" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 2" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 2" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 2" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 2" />


UnhideWhenUsed="false" Name="Dark List Accent 2" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 2" />


UnhideWhenUsed="false" Name="Colorful List Accent 2" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 2" />


UnhideWhenUsed="false" Name="Light Shading Accent 3" />


UnhideWhenUsed="false" Name="Light List Accent 3" />


UnhideWhenUsed="false" Name="Light Grid Accent 3" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 3" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 3" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 3" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 3" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 3" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 3" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 3" />


UnhideWhenUsed="false" Name="Dark List Accent 3" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 3" />


UnhideWhenUsed="false" Name="Colorful List Accent 3" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 3" />


UnhideWhenUsed="false" Name="Light Shading Accent 4" />


UnhideWhenUsed="false" Name="Light List Accent 4" />


UnhideWhenUsed="false" Name="Light Grid Accent 4" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 4" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 4" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 4" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 4" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 4" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 4" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 4" />


UnhideWhenUsed="false" Name="Dark List Accent 4" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 4" />


UnhideWhenUsed="false" Name="Colorful List Accent 4" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 4" />


UnhideWhenUsed="false" Name="Light Shading Accent 5" />


UnhideWhenUsed="false" Name="Light List Accent 5" />


UnhideWhenUsed="false" Name="Light Grid Accent 5" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 5" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 5" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 5" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 5" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 5" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 5" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 5" />


UnhideWhenUsed="false" Name="Dark List Accent 5" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 5" />


UnhideWhenUsed="false" Name="Colorful List Accent 5" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 5" />


UnhideWhenUsed="false" Name="Light Shading Accent 6" />


UnhideWhenUsed="false" Name="Light List Accent 6" />


UnhideWhenUsed="false" Name="Light Grid Accent 6" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 6" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 6" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 6" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 6" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 6" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 6" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 6" />


UnhideWhenUsed="false" Name="Dark List Accent 6" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 6" />


UnhideWhenUsed="false" Name="Colorful List Accent 6" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 6" />


UnhideWhenUsed="false" QFormat="true" Name="Subtle Emphasis" />


UnhideWhenUsed="false" QFormat="true" Name="Intense Emphasis" />


UnhideWhenUsed="false" QFormat="true" Name="Subtle Reference" />


UnhideWhenUsed="false" QFormat="true" Name="Intense Reference" />


UnhideWhenUsed="false" QFormat="true" Name="Book Title" />













"acl number 3248



 rule 0 deny udp source 192.168.248.0 0.0.3.255 destination 10.0.0.0 0.0.0.255



 rule 1 deny icmp source 192.168.248.0 0.0.3.255 destination 10.0.0.0 0.0.0.255 icmp-type echo



 rule 2 deny tcp established source 192.168.248.0 0.0.3.255 destination 10.0.0.0 0.0.0.255"



The qos-profile:





<meta content="text/html; charset=utf-8" http-equiv="Content-Type" />

<meta content="Word.Document" name="ProgId" />

<meta content="Microsoft Word 12" name="Generator" />

<meta content="Microsoft Word 12" name="Originator" />









Normal

0









false

false

false



EN-US

X-NONE

























































DefSemiHidden="true" DefQFormat="false" DefPriority="99"

LatentStyleCount="267">


UnhideWhenUsed="false" QFormat="true" Name="Normal" />


UnhideWhenUsed="false" QFormat="true" Name="heading 1" />






































UnhideWhenUsed="false" QFormat="true" Name="Title" />




UnhideWhenUsed="false" QFormat="true" Name="Subtitle" />


UnhideWhenUsed="false" QFormat="true" Name="Strong" />


UnhideWhenUsed="false" QFormat="true" Name="Emphasis" />


UnhideWhenUsed="false" Name="Table Grid" />




UnhideWhenUsed="false" QFormat="true" Name="No Spacing" />


UnhideWhenUsed="false" Name="Light Shading" />


UnhideWhenUsed="false" Name="Light List" />


UnhideWhenUsed="false" Name="Light Grid" />


UnhideWhenUsed="false" Name="Medium Shading 1" />


UnhideWhenUsed="false" Name="Medium Shading 2" />


UnhideWhenUsed="false" Name="Medium List 1" />


UnhideWhenUsed="false" Name="Medium List 2" />


UnhideWhenUsed="false" Name="Medium Grid 1" />


UnhideWhenUsed="false" Name="Medium Grid 2" />


UnhideWhenUsed="false" Name="Medium Grid 3" />


UnhideWhenUsed="false" Name="Dark List" />


UnhideWhenUsed="false" Name="Colorful Shading" />


UnhideWhenUsed="false" Name="Colorful List" />


UnhideWhenUsed="false" Name="Colorful Grid" />


UnhideWhenUsed="false" Name="Light Shading Accent 1" />


UnhideWhenUsed="false" Name="Light List Accent 1" />


UnhideWhenUsed="false" Name="Light Grid Accent 1" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 1" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 1" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 1" />




UnhideWhenUsed="false" QFormat="true" Name="List Paragraph" />


UnhideWhenUsed="false" QFormat="true" Name="Quote" />


UnhideWhenUsed="false" QFormat="true" Name="Intense Quote" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 1" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 1" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 1" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 1" />


UnhideWhenUsed="false" Name="Dark List Accent 1" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 1" />


UnhideWhenUsed="false" Name="Colorful List Accent 1" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 1" />


UnhideWhenUsed="false" Name="Light Shading Accent 2" />


UnhideWhenUsed="false" Name="Light List Accent 2" />


UnhideWhenUsed="false" Name="Light Grid Accent 2" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 2" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 2" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 2" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 2" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 2" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 2" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 2" />


UnhideWhenUsed="false" Name="Dark List Accent 2" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 2" />


UnhideWhenUsed="false" Name="Colorful List Accent 2" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 2" />


UnhideWhenUsed="false" Name="Light Shading Accent 3" />


UnhideWhenUsed="false" Name="Light List Accent 3" />


UnhideWhenUsed="false" Name="Light Grid Accent 3" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 3" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 3" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 3" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 3" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 3" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 3" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 3" />


UnhideWhenUsed="false" Name="Dark List Accent 3" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 3" />


UnhideWhenUsed="false" Name="Colorful List Accent 3" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 3" />


UnhideWhenUsed="false" Name="Light Shading Accent 4" />


UnhideWhenUsed="false" Name="Light List Accent 4" />


UnhideWhenUsed="false" Name="Light Grid Accent 4" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 4" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 4" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 4" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 4" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 4" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 4" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 4" />


UnhideWhenUsed="false" Name="Dark List Accent 4" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 4" />


UnhideWhenUsed="false" Name="Colorful List Accent 4" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 4" />


UnhideWhenUsed="false" Name="Light Shading Accent 5" />


UnhideWhenUsed="false" Name="Light List Accent 5" />


UnhideWhenUsed="false" Name="Light Grid Accent 5" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 5" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 5" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 5" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 5" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 5" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 5" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 5" />


UnhideWhenUsed="false" Name="Dark List Accent 5" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 5" />


UnhideWhenUsed="false" Name="Colorful List Accent 5" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 5" />


UnhideWhenUsed="false" Name="Light Shading Accent 6" />


UnhideWhenUsed="false" Name="Light List Accent 6" />


UnhideWhenUsed="false" Name="Light Grid Accent 6" />


UnhideWhenUsed="false" Name="Medium Shading 1 Accent 6" />


UnhideWhenUsed="false" Name="Medium Shading 2 Accent 6" />


UnhideWhenUsed="false" Name="Medium List 1 Accent 6" />


UnhideWhenUsed="false" Name="Medium List 2 Accent 6" />


UnhideWhenUsed="false" Name="Medium Grid 1 Accent 6" />


UnhideWhenUsed="false" Name="Medium Grid 2 Accent 6" />


UnhideWhenUsed="false" Name="Medium Grid 3 Accent 6" />


UnhideWhenUsed="false" Name="Dark List Accent 6" />


UnhideWhenUsed="false" Name="Colorful Shading Accent 6" />


UnhideWhenUsed="false" Name="Colorful List Accent 6" />


UnhideWhenUsed="false" Name="Colorful Grid Accent 6" />


UnhideWhenUsed="false" QFormat="true" Name="Subtle Emphasis" />


UnhideWhenUsed="false" QFormat="true" Name="Intense Emphasis" />


UnhideWhenUsed="false" QFormat="true" Name="Subtle Reference" />


UnhideWhenUsed="false" QFormat="true" Name="Intense Reference" />


UnhideWhenUsed="false" QFormat="true" Name="Book Title" />













"qos-profile default



 packet-filter inbound link-group 4999 rule 8



 traffic-priority inbound ip-group 3997 rule 0 cos voice



 traffic-priority inbound ip-group 3997 rule 4 cos network-management



 traffic-priority inbound ip-group 3997 rule 5 cos network-management



 traffic-priority inbound link-group 4999 rule 0 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 1 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 2 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 3 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 4 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 5 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 6 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 7 dscp ef cos voice"



 



However, the rules are applied to the trunk ports going to the various 4500's around the network.



 



"interface GigabitEthernet1/0/1





 stp edged-port enable



 port link-type trunk



 port trunk permit vlan all



 broadcast-suppression pps 3000



 undo jumboframe enable



...



 packet-filter inbound ip-group 3248 rule 0



 packet-filter inbound ip-group 3248 rule 1



 packet-filter inbound ip-group 3248 rule 2"



 



I can add rules to the ACL and remove them later without issue. Will I have to remove the rules from every port in order to remove them?







0 Kudos
thomashugo
New Member

‎02-11-2010 12:11 PM

‎02-11-2010 12:11 PM

Re: Can't remove ACL rule in 5500

Last Post got truncated-



 



I checked the qos-profile, and I am not seeing the acl in question being applied.






The rules:



"acl number 3248



 rule 0 deny udp source 192.168.248.0 0.0.3.255 destination 10.0.0.0 0.0.0.255



 rule 1 deny icmp source 192.168.248.0 0.0.3.255 destination 10.0.0.0 0.0.0.255 icmp-type echo



 rule 2 deny tcp established source 192.168.248.0 0.0.3.255 destination 10.0.0.0 0.0.0.255"



The qos-profile:



"qos-profile default



 packet-filter inbound link-group 4999 rule 8



 traffic-priority inbound ip-group 3997 rule 0 cos voice



 traffic-priority inbound ip-group 3997 rule 4 cos network-management



 traffic-priority inbound ip-group 3997 rule 5 cos network-management



 traffic-priority inbound link-group 4999 rule 0 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 1 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 2 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 3 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 4 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 5 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 6 dscp ef cos voice



 traffic-priority inbound link-group 4999 rule 7 dscp ef cos voice"






However, the rules are applied to the trunk ports going to the various 4500's around the network.






"interface GigabitEthernet1/0/1



 stp edged-port enable



 port link-type trunk



 port trunk permit vlan all



 broadcast-suppression pps 3000



 undo jumboframe enable



...



 packet-filter inbound ip-group 3248 rule 0



 packet-filter inbound ip-group 3248 rule 1



 packet-filter inbound ip-group 3248 rule 2"






I can add rules to the ACL and remove them later without issue. Will I have to remove the rules from every port in order to remove them?


0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.