PAN-OS - Block Destination Service

This playbook blocks a Destination IP and Service (TCP or UDP port) by creating a rule for a specific Device Group on PAN-OS. Supported Cortex XSOAR versions: 5.0.0 and later.

Dependencies

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks

  • PAN-OS Commit Configuration

Integrations

  • Panorama

Scripts

  • SetAndHandleEmpty
  • Set

Commands

  • panorama-create-address
  • panorama-create-rule
  • panorama-create-service
  • panorama-list-services

Playbook Inputs


NameDescriptionDefault ValueRequired
LogForwardingPanorama log forwarding object name.Optional
IPIP address to block.Optional
AutoCommitThis input establishes whether to commit the configuration automatically.
True - Commit automatically.
False - Commit manually.
FalseOptional
DeviceGroupTarget Device Group.Optional
PortDestination port to block.Optional
ProtocolProtocolOptional
ServiceNamePrefixPrefix of the Service name to be created.xsoar-service-Optional
RuleNamePrefixPrefix of the Rule name to be created.xsoar-rule-Optional

Playbook Outputs


There are no outputs for this playbook.

Playbook Image


PAN-OS - Block Destination Service