Ansible - Automating NGFW Configuration

About Ansible Automation

Ansible is a very powerful open source automation language, it uses modules to communicate with vendor specific devices. What makes Ansible unique from other management tools is that it is also a deployment and orchestration tool. In many respects, Ansible helps provide large productivity gains to a wide variety of automation challenges. The Palo Alto Networks Ansible integration project utilizes Ansible to help organizations automate configuration and management of the Palo Alto Networks Platform. The Live Community provides a central place to learn how to utilize this technology, get help from others using it, and more.

Ansible Updates & Tips

Ansible: Using Facts Modules to do Updates

post time: 07-05-2019

How do you perform small, in-place updates to existing config without knowing the whole picture? This blog article teaches you how to use a facts module and various Ansible functions to do just that.

Ansible Version 2.2 Released

post time: 06-12-2019

Ansible version 2.2 is released, including support for configuring log forwarding profiles, subinterfaces, and more.

Webinar: Automate Cloud Security with Ansible

post time: 03-16-2018

Webinar April 25th at 2:00 pm EDT


Palo Alto Networks has developed an Ansible module to enable these organizations to integrate security into their CI/CD pipeline. See it in action and learn how Ansible and Palo Alto Networks help enforce a consistent next-generation security posture across your organization.

Ansible For Firewall SEC Policy Change Management

post time: 07-24-2017

Manage security policy changes using the power of the Palo Alto Networks custom Ansible modules and Ansible ‘pull’ feature.



Using Ansible for AWS Deployments

post time: 07-24-2017

This video shows how to use Ansible to automate and accelerate AWS deployments.




Have questions about how to utilize Ansible to automate your Palo Alto Networks deployments? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
posted: Friday updated: Friday

How to perform a full firewall backup?

Hello,How can I get a full backup including all settings, objects and security policies? The firewall is not managed by Panorama, I would like to be a...

73 0
posted: Thursday updated: Thursday

paramiko hangs on PaloAlto

I have a simple script that used to work but not any longer.  It now hangs during the "load_system_host_keys()".  I have even tried using us...

75 0
posted: Wednesday updated: Sunday

How to parse op(cmd) results

I am new to python. I am able to get results using op() method but not able to display or parse them to use meaningfully.  fw =

174 4
posted: Wednesday updated: Wednesday

updating a portion of the rule - ansible

Wondering if anyone has had any experience updating rules. I have approximately 700 or so rules that i need to add a security profile group to... ...

123 2
posted: Wednesday updated: Wednesday

Ansible PAN OS Collection - Can not connect to PA firewall.

Hello, I have three virtual machines, each hosting a PA Firewall. One VM - test one, has no SSL installed, the other two have a self-signed SSL c...

135 2

Related Topics

Palo Alto Networks Delivers

Ansible Community Ansible Community

Automation for Everyone. Ansible is designed around the way people work and the way people work together. Learn more

Ansible Documentation Palo Alto Networks Ansible doc's Ansible Docs on GitHub

Read the latest reference documentation for the Palo Alto Networks Ansible project on Github. Learn more