Can you delete individual ACL entries in global config mode?

In Cisco devices, Access Control Lists (ACLs) are used to filter traffic and control access to network resources. When working with ACLs in global configuration mode, you cannot delete individual entries directly. Instead, the entire ACL must be removed and recreated without the unwanted entries.

This restriction arises because ACLs are typically stored as a complete set of rules associated with a specific ACL number or name. When you want to modify an existing ACL, you would need to enter the ACL configuration mode, which allows you to delete the entire ACL or redefine it as required. In essence, while you can modify or remove entire ACLs, granular control at the individual entry level is not supported in this mode.

Thus, the answer to the question regarding the ability to delete individual ACL entries in global config mode is that it is not possible.