PAN-OS - Block IP - Static Address Group

Blocks IP addresses using Static Address Groups in Palo Alto Networks Panorama or Firewall. The playbook receives malicious IP addresses and an address group name as inputs, verifies that the addresses are not already a part of the address group, adds them and commits the configuration.

Note: The playbook does not block the address group communication using a policy block rule. This step will be taken once outside of the playbook.

Dependencies

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks

  • PAN-OS Commit Configuration

Integrations

This playbook does not use any integrations.

Scripts

This playbook does not use any scripts.

Commands

  • panorama-create-address
  • panorama-edit-address-group
  • panorama-get-address-group

Playbook Inputs


NameDescriptionDefault ValueSourceRequired
IPThe IP address to block.AddressIPOptional
LogForwardingThe Panorama log forwarding object name.--Optional
AddressGroupNameThe static address group name.Demisto Remediation - Static Address Group-Optional
AutoCommitWhether to commit the configuration automatically. "Yes" will commit automatically. "No" will commit manually.No-Optional

Playbook Outputs


There are no outputs for this playbook.

Playbook Image


PAN-OS_Block_IP_Static_Address_Group