From 61c07b9d43529f69f48ca54f4f0213cff52b5d0a Mon Sep 17 00:00:00 2001 From: Donatas Abraitis Date: Fri, 17 Mar 2023 14:48:35 +0200 Subject: lib: Adjust only `any` flag for prefix-list entries if destroying Before this patch, if we destroy `any` flag for a prefix-list entry, we always set destination as 0.0.0.0/0 and/or ::/0. This means that, if we switch from `ip prefix-list r1-2 seq 5 deny any` to `ip prefix-list r1-2 seq 5 permit 10.10.10.10/32` we will have `permit any` eventually, which broke ACLs. Signed-off-by: Donatas Abraitis --- lib/filter_cli.c | 1 + 1 file changed, 1 insertion(+) (limited to 'lib/filter_cli.c') diff --git a/lib/filter_cli.c b/lib/filter_cli.c index 7ef0d47f67..927cf4418e 100644 --- a/lib/filter_cli.c +++ b/lib/filter_cli.c @@ -1326,6 +1326,7 @@ DEFPY_YANG( vty, "./ipv4-prefix-length-lesser-or-equal", NB_OP_DESTROY, NULL); } + nb_cli_enqueue_change(vty, "./any", NB_OP_DESTROY, NULL); } else { nb_cli_enqueue_change(vty, "./any", NB_OP_CREATE, NULL); } -- cgit v1.2.3