ip access-list resequence [name] [start] [increment]
Resequences the sequence numbers of entries in a named IP access list to allow insertion of new entries between existing ones.
ip access-list resequence [name] [start] [increment]When to Use This Command
- After adding entries to an ACL with no sequence numbers, resequence to create gaps for future edits.
- When an ACL has entries with sequence numbers that are too close together (e.g., 10, 11, 12), resequence to spread them out (e.g., 10, 20, 30).
- To reorder ACL entries by renumbering them after deleting some entries, making the sequence numbers consistent.
- When troubleshooting ACL order issues, resequence to ensure entries are in the correct order and have proper gaps.
Command Examples
Resequence an ACL with default start and increment
ip access-list resequence MY_ACL 10 10Resequencing of access list MY_ACL done
The command resequences the ACL named MY_ACL starting at sequence number 10 with an increment of 10. The output confirms the operation was successful.
Resequence an ACL with custom start and increment
ip access-list resequence BLOCK_ACL 100 20Resequencing of access list BLOCK_ACL done
This resequences BLOCK_ACL starting at 100 with an increment of 20. The output confirms completion.
Understanding the Output
The output for the 'ip access-list resequence' command is minimal: it simply confirms that the resequencing operation was completed successfully. There are no columns or fields to interpret. The key is to verify that the command executed without errors. After resequencing, use 'show access-list [name]' to view the new sequence numbers. Good values are evenly spaced sequence numbers (e.g., 10, 20, 30) that allow future insertions. Watch for error messages like 'Access list not found' if the name is incorrect.
CCNA Exam Tips
CCNA exam may ask why resequencing is needed: to insert new ACEs between existing ones without removing and re-adding the entire ACL.
Remember that resequencing does not change the order of ACEs; it only renumbers them. The order remains the same.
Know that the default start and increment are both 10, but you can specify custom values.
Be aware that resequencing is only available for named ACLs, not numbered ACLs.
Common Mistakes
Mistake: Forgetting to use 'ip access-list resequence' before adding new entries, resulting in the new entry being appended at the end instead of in the desired position.
Mistake: Using the command on a numbered ACL (e.g., access-list 100) which is not supported; resequence only works with named ACLs.
Mistake: Choosing a start value that is too high, leaving no room for future entries if the increment is small.
Related Commands
ip access-list extended [name]
Creates or enters an extended named access list to filter traffic based on source/destination IP, protocol, and port numbers, used for granular traffic control.
ip access-list standard [name]
Creates or enters a standard named IP access list to filter traffic based on source IP address, used to permit or deny packets in a Cisco IOS network.
Practice for the CCNA 200-301
Test your knowledge with hundreds of CCNA practice questions covering all exam domains.
Practice CCNA Questions