Skip to main content

PAN-OS - Block IP - Static Address Group

This Playbook is part of the PAN-OS Pack.#

Blocks IP addresses using Static Address Groups in Palo Alto Networks Panorama or Firewall. The playbook receives malicious IP addresses and an address group name as inputs, verifies that the addresses are not already a part of the address group, adds them and commits the configuration.

Note: The playbook does not block the address group communication using a policy block rule. This step will be taken once outside of the playbook.

Dependencies#

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks#

  • PAN-OS Commit Configuration

Integrations#

This playbook does not use any integrations.

Scripts#

This playbook does not use any scripts.

Commands#

  • panorama-create-address
  • panorama-edit-address-group
  • panorama-get-address-group

Playbook Inputs#


NameDescriptionDefault ValueSourceRequired
IPThe IP address to block.AddressIPOptional
LogForwardingThe Panorama log forwarding object name.--Optional
AddressGroupNameThe static address group name.Demisto Remediation - Static Address Group-Optional
AutoCommitWhether to commit the configuration automatically. "Yes" will commit automatically. "No" will commit manually.No-Optional

Playbook Outputs#


There are no outputs for this playbook.

Playbook Image#


PAN-OS_Block_IP_Static_Address_Group