Automation / API

Automation and Orchestration Tools and Technologies

When configuring and managing the Palo Alto Networks Next-Generation firewall for scale and agility, it’s nice to have a collection of tools to automate activities and events. Our Automation and Orchestration tools and technologies provide a collection of open, extensible projects that help you take the next step. Learn about these tools with detailed documents and join in the discussions with other users to get the most from these resources.

Automation Projects

Available Automation Tools

Ansible

Automation for Everyone. Ansible is designed around the way people work and the way people work together. Learn more

Device Framework Device Framework

Device Framework enables non-programmers to create sophisticated automations that leverage the PAN-OS API. Learn more

Terraform Terraform

Terraform enables teams to automate deployment and adapt to the changing needs of cloud infrastructures. Learn more

Automation Blog

Ansible: Using Facts Modules to do Updates

post time: 07-05-2019

How do you perform small, in-place updates to existing config without knowing the whole picture? This blog article teaches you how to use a facts module and various Ansible functions to do just that.

Ansible Version 2.2 Released

post time: 06-12-2019

Ansible version 2.2 is released, including support for configuring log forwarding profiles, subinterfaces, and more.

Terraform Provider Version 1.5.0 Released

post time: 02-04-2019

The 1.5.0 release contains support for BGP, BFD profiles, an enhanced NAT rule resource, and various user requested enhancements.

Ansible v2.0.0 (Katana) released

post time: 09-27-2018

Version 2.0.0 of Palo Alto Network Modules has been released. This is major release that includes expanded support for Panorama and Next Generation Firewall including very much awaited support for idempotency.

 

The updated documentation can be found here:
http://paloaltonetworks.github.io/ansible-pan/

Terraform Provider Version 1.4.0 Released

post time: 08-27-2018

The 1.4.0 release includes expanded support for Panorama (such as ethernet interfaces, templates, and template variables), IPSec tunnels, IKE gateways, firewall licensing, and much more.

Discussions

Have questions about automation APIs? Join the Live Community to post your questions and get answers.
Author Topic Views Replies
posted: 2 weeks ago updated: a week ago

Windows Script to connect PaloAlto firewall and run commands

Hi TeamMy requirement is:Run a Python/Powershell script from a windows box which should connect to Palo Alto by command line with SSH connection and r...

515 8
posted: 2 weeks ago updated: Thursday

Ansible disable firewall rules

Hello All,I have recently started experimenting with Ansible and managed to add/remove some rules. It's been a steep learning curve so far, I must adm...

243 2
posted: 3 weeks ago updated: 3 weeks ago

Policy Optimizer API calls

I am trying to create a report and automate disabling rules that have not been used in the last 30 days.  the report will run the 1 st of ev...

387 1
posted: 3 weeks ago updated: 2 weeks ago

IpsecTunnel api refresh

im trying to get a list of ipsec tunnels from each template stack i have. but anytime i attempt to use the class pandevice.network.IpsecTunnel i recei...

371 4
posted: 3 weeks ago updated: 3 weeks ago

PANOS software upgrade automation using panorama

HI All, Is there anyone who is working on panos version/software upgrade automation via panorama. Please share script or APIs....

189 0