Ansible - Automating NGFW Configuration

About Ansible Automation

Ansible is a very powerful open source automation language, it uses modules to communicate with vendor specific devices. What makes Ansible unique from other management tools is that it is also a deployment and orchestration tool. In many respects, Ansible helps provide large productivity gains to a wide variety of automation challenges. The Palo Alto Networks Ansible integration project utilizes Ansible to help organizations automate configuration and management of the Palo Alto Networks Platform. The Live Community provides a central place to learn how to utilize this technology, get help from others using it, and more.

Ansible Updates & Tips

Webinar - Automate Cloud Security with Ansible

post time: Mar 16, 2018 10:07:39 AM

Webinar Apr 25th at 2:00 pm EDT


Palo Alto Networks has developed an Ansible module to enable these organizations to integrate security into their CI/CD pipeline. See it in action and learn how Ansible and Palo Alto Networks help enforce a consistent next-generation security posture across your organization.

View the recording:

Using Ansible For Firewall SEC Policy Change Management Process

post time: Jul 24, 2017 11:29:13 AM

Manage security policy changes using the power of the Palo Alto Networks custom Ansible modules and Ansible ‘pull’ feature.



Using Ansible to Automate & Accelerate AWS Deployments

post time: Jul 24, 2017 11:20:15 AM

This video shows how to use Ansible to automate and accelerate AWS deployments.


Ansible and Palo Alto Networks Firewall

post time: Apr 3, 2017 2:38:27 PM

The combination of Ansible and Palo Alto Networks modules address the most common applications of automation and orchestration of the Palo Alto Networks VM-Series NGFW (Next Generation Firewall) for both public and private cloud deployments.



Have questions about how to utilize Ansible to automate your Palo Alto Networks deployments? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
posted: 2 weeks ago updated: 2 weeks ago

Panorama Managed Bootstrap Deployment

We are currently preparing for a bootstrap deployment, with a Panorama MGMT server. 3 Datacenters. 1 NGFW & 1 Panorama Log Collector per DC. The q...

12 0
posted: 4 weeks ago updated: 2 weeks ago

How to start with pandievice and API

Hi all, I feel a bit stupid asking the question, but surely, others had the same problem as me. I am trying to create multiple address objec...

89 5
posted: 4 weeks ago updated: 4 weeks ago

Output format for test/url-info-cloud and test/url-info-host

So I had a crazy idea and started poking around at the XML API on my firewall.  I wanted to see if there was a generally efficient way to automat...

13 0
posted: Jan 14, 2019 6:19:11 PM updated: Jan 17, 2019 3:40:06 PM

APIs to createmove a security policy at the top of device group pre-rule section and move it up/down

Dear All, on Panorama GUI (version 8.1.3),  I am able to move security policies to Top, Bottom, Up and Down in the device group pre-rul...

81 6
posted: Jan 13, 2019 2:03:47 AM updated: Jan 17, 2019 10:39:34 AM

Disable tunnel ipsec via api

Is there a way to disable ipsec tunnel via api?From what I reah ansible-pan, there is only state present / absent. Thanks...

35 8

Related Topics

Palo Alto Networks Delivers

Ansible Community Ansible Community

Automation for Everyone. Ansible is designed around the way people work and the way people work together. Learn more

Ansible Documentation Palo Alto Networks Ansible doc's Ansible Docs on GitHub

Read the latest reference documentation for the Palo Alto Networks Ansible project on Github. Learn more