ACL::eval

Description

This command enforces ACLs in your connections.

Syntax

ACL::eval [-l7]

ACL::eval

  • evaluates L4 ACLs

ACL::eval -l7

  • When -l7 flag is given, ACL::eval will abort if it encounters an L7 ACL and the irule will return 1. It will not perform any ACL Actions (Allow, Reject, etc). If ACL::eval does not encounter any L7 ACLs, it will process the ACL action and return 0.

Examples

when CLIENT_ACCEPTED {
    ACL::eval
}

when CLIENT_ACCEPTED {
    if { [ACL::eval -l7] == 0 } {
        HTTP::disable
    }
}