ltm rule command ACCESS acl
iRule(1) BIG-IP TMSH Manual iRule(1)
ACCESS::acl
Poll or enforce ACLs in your connections.
SYNOPSIS
ACCESS::acl (result | matched | lookup | (eval ACL_NAME))
DESCRIPTION
The ACCESS::acl commands allow you to poll, query or enforce ACLs for a
given connection.
ACCESS::acl result
* Returns the result of ACL match for a particular URI in
ACCESS_ACL_ALLOWED and ACCESS_ACL_DENIED events.
* This result can have one of the following values
* - Allow
* - Reject
ACCESS::acl lookup
* Returns the name of all the assigned ACLs for a particular session.
ACCESS::acl eval $acl_name
* Allows admin to enforce an ACL to a user request from iRule. Using
this command, admin can specify extra ACL to be enforced to user's
request.
ACCESS::acl matched
Returns the name of the ACL that was matched.
* Requires APM module
RETURN VALUE
VALID DURING
ACCESS_ACL_ALLOWED, ACCESS_ACL_DENIED
EXAMPLES
when ACCESS_ACL_ALLOWED {
ACCESS::acl eval "additional_acl"
}
HINTS
SEE ALSO
CHANGE LOG
@BIGIP-10.1.0 --First introduced the command.
BIG-IP 2017-01-31 iRule(1)