ltm rule command ACL eval
iRule(1) BIG-IP TMSH Manual iRule(1)
ACL::eval
Enforce ACLs in your connections.
SYNOPSIS
ACL::eval ('-l7')?
DESCRIPTION
The ACL::eval command allows admin to enforce ACLs for a given
connection through APM network access tunnels.
* Requires APM module and network access
Syntax ACL::eval
evaluates L4 ACLs
ACL::eval -l7
When -l7 flag is given, ACL::eval will abort if it encounters an L7
ACL
and the irule will return 1. It will not perform any ACL Actions
(Allow, Reject, etc).
If ACL::eval does not encounter any L7 ACLs, it will process the
ACL action and return 0.
RETURN VALUE
VALID DURING
CLIENT_ACCEPTED
EXAMPLES
when CLIENT_ACCEPTED {
ACL::eval
}
when CLIENT_ACCEPTED {
if { [ACL::eval -l7] == 0 } {
HTTP::disable
}
}
HINTS
SEE ALSO
CHANGE LOG
@BIGIP-13.0.0 --First introduced the command.
BIG-IP 2017-01-31 iRule(1)