5:[["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"LearningResource\",\"name\":\"Evaluate ACL rules for IP and CIDR\",\"description\":\"Practice this Coding & Algorithms question\",\"url\":\"https://prachub.com/coding-questions/evaluate-acl-rules-for-ip-and-cidr\",\"datePublished\":\"2026-01-22T00:00:00\",\"learningResourceType\":\"Practice Problem\",\"educationalLevel\":\"hard\",\"provider\":{\"@type\":\"Organization\",\"name\":\"PracHub\",\"url\":\"https://prachub.com\"},\"sourceOrganization\":{\"@type\":\"Organization\",\"name\":\"Databricks\"},\"about\":\"Coding & Algorithms\",\"audience\":{\"@type\":\"Audience\",\"audienceType\":\"Software Engineer\"}}"}}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"BreadcrumbList\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https://prachub.com/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Coding Questions\",\"item\":\"https://prachub.com/questions?category=Coding%20%26%20Algorithms\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Databricks\",\"item\":\"https://prachub.com/?company=Databricks\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"Software Engineer\",\"item\":\"https://prachub.com/?position=Software%20Engineer\"},{\"@type\":\"ListItem\",\"position\":5,\"name\":\"Evaluate ACL rules for IP and CIDR\",\"item\":\"https://prachub.com/coding-questions/evaluate-acl-rules-for-ip-and-cidr\"}]}"}}],["$","script",null,{"type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"{\"@context\":\"https://schema.org\",\"@type\":\"FAQPage\",\"mainEntity\":[{\"@type\":\"Question\",\"name\":\"Evaluate ACL rules for IP and CIDR\",\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"This is a Coding & Algorithms interview question from Databricks for Software Engineer roles. Practice with our interactive coding console on PracHub.\"}},{\"@type\":\"Question\",\"name\":\"How do I practice coding and algorithm questions?\",\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"Use PracHub's coding console to write, test, and debug your solutions in Python or JavaScript. View hints, test against sample inputs, and compare with official solutions.\"}}]}"}}],["$","$L1a",null,{"initialPost":{"_schema_debug":{"error":null,"method":"cached_checked"},"ai_likes_count":0,"author":"admin","categories":["Databricks","Software Engineer","Technical Screen","Coding & Algorithms"],"category":"Coding & Algorithms","category_raw":"Coding & Algorithms","comments":[],"comments_count":0,"company":"Databricks","content":"$1b","content_enhanced":"$1c","content_raw":null,"created_at":"2026-01-22T00:00:00","difficulty":"hard","expected_results":null,"has_coding_problem":false,"has_coding_schema":true,"has_schema_data":true,"has_solution":false,"id":6291,"interview_round":"Technical Screen","is_hidden":false,"is_liked":false,"is_locked":true,"is_saved":false,"is_shared":false,"likes":[],"likes_count":2,"meta_description":null,"position":"Software Engineer","real_likes_count":0,"schema_data":{"questions":[{"constraints":["IPv4 only","0 <= prefix_length <= 32","1 <= len(rules) <= 200000","Input IP and CIDRs are valid dotted-decimal IPv4 strings"],"difficulty":"Easy","examples":[{"explanation":"The first rule matches exactly and denies.","input":"([('DENY','10.0.0.5/32'),('ALLOW','10.0.0.0/8')], '10.0.0.5')","output":"DENY"},{"explanation":"First rule doesn't match; second rule allows 10.0.0.0/8.","input":"([('DENY','10.0.0.5/32'),('ALLOW','10.0.0.0/8')], '10.1.2.3')","output":"ALLOW"}],"function_signature":{"cpp":"#include \nusing namespace std;\nstring solution(const vector>& rules, const string& ip) {\n return \"\";\n}\n","java":"class Solution {\n public static String solution(java.util.List rules, String ip) {\n return null;\n }\n}\n","javascript":"function solution(rules, ip) {\n return '';\n}\n","python":"def solution(rules, ip):\n pass"},"hints":[],"problem_statement":"You are given an ordered Access Control List (ACL). Each ACL rule consists of an action (\"ALLOW\" or \"DENY\") and an IPv4 CIDR block (e.g., \"192.168.1.0/24\"). To evaluate a single input IPv4 address, scan the rules from top to bottom. The first rule whose CIDR contains the IP determines the result. If no rule matches, the default is \"DENY\".\n\nImplement the evaluator and return the final decision for the given IP.","solution":{"code":"def solution(rules, ip):\n def ip_to_int(s):\n a, b, c, d = s.strip().split('.')\n return (int(a) << 24) | (int(b) << 16) | (int(c) << 8) | int(d)\n\n def cidr_to_range(cidr):\n base_str, p_str = cidr.strip().split('/')\n p = int(p_str)\n base = ip_to_int(base_str)\n if p == 0:\n start = 0\n end = (1 << 32) - 1\n return start, end\n mask = ((0xFFFFFFFF << (32 - p)) & 0xFFFFFFFF)\n start = base & mask\n end = start | (~mask & 0xFFFFFFFF)\n return start, end\n\n x = ip_to_int(ip)\n for action, cidr in rules:\n start, end = cidr_to_range(cidr)\n if start <= x <= end:\n return action.strip().upper()\n return 'DENY'\n","explanation":"","space_complexity":"O(1) extra space (excluding input storage)","time_complexity":"O(N), where N = len(rules)"},"test_cases":[{"expected_output":"DENY","explanation":"The first rule matches exactly and denies.","input":"([('DENY','10.0.0.5/32'),('ALLOW','10.0.0.0/8')], '10.0.0.5')"},{"expected_output":"ALLOW","explanation":"First rule doesn't match; second rule allows 10.0.0.0/8.","input":"([('DENY','10.0.0.5/32'),('ALLOW','10.0.0.0/8')], '10.1.2.3')"},{"expected_output":"ALLOW","explanation":"IP is within 192.168.1.0/24.","input":"([('ALLOW','192.168.1.0/24')], '192.168.1.200')"},{"expected_output":"DENY","explanation":"No matching rule; default deny.","input":"([('ALLOW','192.168.1.0/24')], '192.168.2.1')"},{"expected_output":"ALLOW","explanation":"/0 matches all IPv4 addresses.","input":"([('ALLOW','0.0.0.0/0')], '203.0.113.7')"}],"title":"Part 1: Evaluate Ordered ACL Rules for a Single IPv4 Address","topic":""},{"constraints":["IPv4 only","0 <= prefix_length <= 32","1 <= len(rules) <= 5000","Input CIDRs are valid","Must not iterate through all IPs in the query range"],"difficulty":"Medium","examples":[{"explanation":"All IPs in 10.1.0.0/16 match the allow rule.","input":"([('ALLOW','10.0.0.0/8')], '10.1.0.0/16')","output":"ALLOW"},{"explanation":"IPs in 10.1.1.0/24 are denied by the first rule, so the whole query is denied.","input":"([('DENY','10.1.1.0/24'),('ALLOW','10.0.0.0/8')], '10.1.0.0/16')","output":"DENY"}],"function_signature":{"cpp":"#include \nusing namespace std;\nstring solution(const vector>& rules, const string& queryCidr) {\n return \"\";\n}\n","java":"class Solution {\n public static String solution(java.util.List rules, String queryCidr) {\n return null;\n }\n}\n","javascript":"function solution(rules, queryCidr) {\n return '';\n}\n","python":"def solution(rules, query_cidr):\n pass"},"hints":[],"problem_statement":"You are given an ordered Access Control List (ACL). Each ACL rule is (\"ALLOW\" or \"DENY\", CIDR). To evaluate a single IPv4 address, the first matching rule determines the decision; if nothing matches, default is \"DENY\".\n\nIn this problem, the input is not a single IP but an IPv4 CIDR block (a range of IPs). The input CIDR should be considered \"ALLOW\" only if **every** IP address in that input range would be allowed by the ACL evaluation (using the same first-match semantics). If **any** IP in the range is denied (or falls through to default deny), the result for the whole input CIDR is \"DENY\".\n\nYou must not enumerate all IPs in the input range.","solution":{"code":"$1d","explanation":"","space_complexity":"O(K) for storing undecided intervals","time_complexity":"O(N * K) worst-case, where N = number of rules and K is the number of remaining undecided intervals (K can grow up to O(N))"},"test_cases":[{"expected_output":"ALLOW","explanation":"All IPs in 10.1.0.0/16 match the allow rule.","input":"([('ALLOW','10.0.0.0/8')], '10.1.0.0/16')"},{"expected_output":"DENY","explanation":"IPs in 10.1.1.0/24 are denied by the first rule, so the whole query is denied.","input":"([('DENY','10.1.1.0/24'),('ALLOW','10.0.0.0/8')], '10.1.0.0/16')"},{"expected_output":"ALLOW","explanation":"The /0 allow rule covers everything.","input":"([('ALLOW','0.0.0.0/0')], '192.168.0.0/16')"},{"expected_output":"DENY","explanation":"The query range is not covered by any allow rule, so it falls through to default deny.","input":"([('ALLOW','10.0.0.0/9')], '10.128.0.0/9')"},{"expected_output":"DENY","explanation":"First-match semantics: the first rule denies, so the later allow never applies.","input":"([('DENY','10.0.0.0/8'),('ALLOW','10.0.0.0/9')], '10.0.0.0/9')"}],"title":"Part 2: Evaluate Ordered ACL Rules for an Input CIDR (Allow Only If Entire Range Is Allowed)","topic":""}],"version":"2.0"},"seo_summary":null,"shares_count":0,"slug":"evaluate-acl-rules-for-ip-and-cidr","solution":null,"solution_explanation":null,"solution_locked":false,"solution_python":null,"solution_r":null,"tags":[],"title":"Evaluate ACL rules for IP and CIDR","updated_at":"2026-01-22T19:03:00.830413","user_id":1,"views_count":26}}]]