PAN-OS - Block IP and URL - External Dynamic List

Blocks IP addresses and URLs using Palo Alto Networks Panorama or Firewall External Dynamic Lists. It checks if the EDL configuration is in place with the PAN-OS EDL Setup sub-playbook (otherwise the list will be configured), and adds the input IP addresses and URLs to the relevant lists.

Dependencies

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks

  • PAN-OS EDL Setup

Integrations

This playbook does not use any integrations.

Scripts

This playbook does not use any scripts.

Commands

  • panorama-refresh-edl
  • panorama
  • pan-os-edl-update

Playbook Inputs


NameDescriptionDefault ValueSourceRequired
IPListNameThe IP address list from the instance context with which to override the remote file.Demisto Remediation - IP EDL-Optional
IPThe IP address to block.AddressIPOptional
URLThe URL to block.DataURLOptional
URLListNameThe URL list from the instance context with which to override the remote file.Demisto Remediation - URL EDL-Optional
LogForwardingThe log forwarding object name.--Optional
EDLServerIPThe EDL server IP address.--Optional
AutoCommitWhether to commit the configuration automatically. "Yes" will commit automatically. "No" will Commit manually.No-Optional
url-pre-post-rulebaseEither pre-rulebase or post-rulebase, according to the rule structure.pre-rulebase-Optional
ip-pre-post-rulebaseEither pre-rulebase or post-rulebase, according to the rule structure.pre-rulebase-Optional
url-rule-positionThe position of the rule in the ruleset. Can be, "Top", "Bottom", "Before", or "After".--Optional
ip-rule-positionThe position of the rule in the ruleset. Can be, "Top", "Bottom", "Before", or "After".--Optional

Playbook Outputs


There are no outputs for this playbook.

Playbook Image


PAN-OS_Block_IP_and_URL_External_Dynamic_List