HAProxy Enterprise Documentation 2.2r1

Predefined ACLs

Certain predefined ACLs are hardcoded into HAProxy. Their names are in upper case to avoid confusion. Below is the list of predefined ACLs with their equivalence:

ACL name

Equivalent to

Usage

FALSE

always_false

Never match

HTTP

req_proto_http

Match if protocol is valid HTTP

HTTP_1.0

req_ver 1.0

Match HTTP version 1.0

HTTP_1.1

req_ver 1.1

Match HTTP version 1.1

HTTP_CONTENT

hdr_val(content-length) gt 0

Match an existing content-length

HTTP_URL_ABS

url_reg ^[^/:]*://

Match absolute URL with scheme

HTTP_URL_SLASH

url_beg /

Match URL beginning with /

HTTP_URL_STAR

url *

Match URL equal to *

LOCALHOST

src 127.0.0.1/8

Match connection from local host

METH_CONNECT

method CONNECT

Match HTTP CONNECT method

METH_DELETE

method DELETE

Match HTTP DELETE method

METH_GET

method GET HEAD

Match HTTP GET or HEAD method

METH_HEAD

method HEAD

Match HTTP HEAD method

METH_OPTIONS

method OPTIONS

Match HTTP OPTIONS method

METH_POST

method POST

Match HTTP POST method

METH_PUT

method PUT

Match HTTP PUT method

METH_TRACE

method TRACE

Match HTTP TRACE method

RDP_COOKIE

req_rdp_cookie_cnt gt 0

Match presence of an RDP cookie

REQ_CONTENT

req_len gt 0

Match data in the request buffer

TRUE

always_true

Always match

WAIT_END

wait_end

Wait for end of content analysis


Next up

ACL Reference