batch_analyze_overlap
Analyze multiple candidate firewall rules against an existing ruleset in one call, reusing the parsed rules for all candidates.
Instructions
Analyze multiple candidate rules against the same existing ruleset in a single call. More efficient than calling analyze_firewall_rule_overlap multiple times — existing_rules is parsed once and reused for each candidate. Use parse_policy first to get normalized rules, then pass all candidates at once.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| existing_rules | No | Array of normalized rule objects from parse_policy output. Parsed once and reused for all candidates. | |
| candidate_rules | No | Array of candidate rule objects to analyze. Each object: {"id": "candidate-1", "position": 1, "action": "permit"|"deny", "source_addresses": ["CIDR"], "destination_addresses": ["CIDR"], "services": [{"protocol": "tcp", "ports": "443"}], "source_zones": ["any"], "destination_zones": ["any"], "applications": ["any"]}. |
Output Schema
| Name | Required | Description | Default |
|---|---|---|---|
No arguments | |||