Prisma Access Egress IP feed
Dynamically retrieve and allow IPs Prisma Access uses to egress traffic to the internet and SaaS apps. This integration was integrated and tested with version xx of Prisma Access Egress IP feed
Configure Prisma Access Egress IP feed on Demisto
- Navigate to Settings > Integrations > Servers & Services.
- Search for Prisma Access Egress IP feed.
- Click Add instance to create and configure a new integration instance.
| Parameter | Description | Required |
|---|---|---|
| feed | Fetch indicators | False |
| URL | URL | True |
| api_key | Prisma Access API Key | True |
| serviceType | Service Type | True |
| addrType | Address Type | True |
| location | Location | False |
| feedReputation | Indicator Reputation | False |
| feedReliability | Source Reliability | True |
| feedExpirationPolicy | False | |
| feedExpirationInterval | False | |
| feedFetchInterval | Feed Fetch Interval | False |
| feedBypassExclusionList | Bypass exclusion list | False |
| insecure | Trust any certificate (not secure) | False |
| proxy | Use system proxy settings | False |
- Click Test to validate the URLs, token, and connection.
Commands
You can execute these commands from the Demisto CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.
prisma-access-get-indicators
Gets indicators from the feed.
Base Command
prisma-access-get-indicators
Input
| Argument Name | Description | Required |
|---|---|---|
| limit | The maximum number of results to return. By default all IPs are returned. | Optional |
Context Output
| Path | Type | Description |
|---|---|---|
| PrismaAccess.Egress.IP.Address | string | Prisma Access Egress IP address |
| PrismaAccess.Egress.IP.Zone | string | Prisma Access Egress IP zone |
Command Example
!prisma-access-get-indicators limit=300