ACL::eval

Description¶

This command enforces ACLs in your connections.

Syntax¶

ACL::eval [-l7]

ACL::eval¶

evaluates L4 ACLs

ACL::eval -l7¶

When -l7 flag is given, ACL::eval will abort if it encounters an L7 ACL and the irule will return 1. It will not perform any ACL Actions (Allow, Reject, etc). If ACL::eval does not encounter any L7 ACLs, it will process the ACL action and return 0.

Examples¶

when CLIENT_ACCEPTED {
    ACL::eval
}

when CLIENT_ACCEPTED {
    if { [ACL::eval -l7] == 0 } {
        HTTP::disable
    }
}

Related Information¶

Valid Events:
CLIENT_ACCEPTED

Warning

The links to the sample code below are remnants of the old DevCentral wiki and will result in a 404 error. For best results, please copy the link text and search the codeshare directly on DevCentral.

Sample Code:

Introduced: BIGIP-12.1.0

The BIG-IP API Reference documentation contains community-contributed content. F5 does not monitor or control community code contributions. We make no guarantees or warranties regarding the available code, and it may contain errors, defects, bugs, inaccuracies, or security vulnerabilities. Your access to and use of any code available in the BIG-IP API reference guides is solely at your own risk.