Supported Cortex XSOAR versions: 6.5.0 and later.
This playbook add domains EDL to Panorama Anti-Spyware. It assigns External Dynamic List URLs that contain domains to block to Panorama Anti-Spyware. You can create an External Dynamic List (EDL) and add domains to it using the Cortex XSOAR pack called "Generic Export Indicators Service". We recommend using this playbook as a one-time job. Once EDL is created and assigned to anti-spyware, domains can be blocked by adding them to the EDL.
This playbook uses the following sub-playbooks, integrations, and scripts.
- PAN-OS Commit Configuration
This playbook does not use any scripts.
|The URL from which to pull the EDL.
|Set to "true" to use the existing PAN-OS EDL.
|PAN-OS EDL name to create/edit if it exists (depending on the value in Add_To_Existing_PAN-OS_EDL).
|The device group for which to return addresses for the EDL (Panorama instances).
|The certificate profile name for the URL that was previously uploaded to PAN OS.
|Name of the anti-spyware profile to create OR to edit if it exists (depending on the value in Use_Existing_AntiSpyware_Profile).
|Set to "true" to create a new anti-spyware profile.
There are no outputs for this playbook.