This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community and translation experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
Buy or Renew
Buy or Renew
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

About Automation/API Discussions

Threads in this discussion area are now read-only. If you have a question about Automation/API products please visit our product discussions.

Discussions

Start a conversation

Automate the monitoring and remediation of shifting traffic off a degraded link

Hi all, as the title suggests I'd like to be able to automate the monitoring and remediation of shifting traffic off a degraded link. In my environment, we have two corp DIA circuits for internet-bound traffic which we perform ECMP load balancing on. The problem we have is if one of the two links is degraded and suffering substantial packet lo...

Cortex XDR Api

Good Morning, From today the cortex xdr api is not working correctly, every query is responding with an internal server error while up to yesterday all was working correctly.Someone knows if there are ongoing changes at backend level or to the api directly? Cortex XDR

NicoloS by L0 Member
  • 1563 Views
  • 0 replies
  • 0 Likes

Ansible change interzone-default logging

I am trying to figure out a way that I can use Ansible playbook to override the interzone-default rule to add 'logging at session end'. Have tried using panos_type_cmd but so far not having any luck. Just gettin the following error:"module_stdout": "","msg": "MODULE FAILURE\nSee stdout/stderr for the exact error","rc": 1 Here is what the task l...

Jaromme by L1 Bithead
  • 3052 Views
  • 4 replies
  • 0 Likes

Always connect to active firewall

HI @gfreeman @btorresgil Just checking how we can connect to active firewall using Ansible module .In python , we are using refresh_ha_active() and its working , however we need to test using Ansible.Could you please provide some input here. Thanks

Automate Firewall Policies and Objects

Hello Everyone, I have a bunch of Palos been centrally managed by Panorama. I am about to embark on an automation journey - more interested in configuration management. I am interested to know what the best practices are and how the community got started on their journey. Presently use dynamic objects and tags on my configuration, and push all r...

Overused/Taxed Panorama API

Hi, we have various tools using the Panorama API. Some collect logs, some collect rule data and some make rule/object changes. We also have numerous engineers making changes via the CLI and committing all day. What we notice is that sometimes Ansible fails due to resource/timeout issues. Basically some other work is happening which is clogging u...

SimonT by L2 Linker
  • 1671 Views
  • 1 replies
  • 0 Likes

Issue with disabling Global Protect client using API

When entering a valid request number and selecting the correct portal. API is returning object(stdClass)#4 (2) { ["@attributes"]=> object(stdClass)#3 (1) { ["status"]=> string(5) "error" } ["msg"]=> object(stdClass)#5 (1) { ["line"]=> string(32) "Command succeeded with no output"} }``` URL: https://panorama.gg.net/api/?type=op&cm...

gmurugan by L1 Bithead
  • 3098 Views
  • 3 replies
  • 0 Likes

Import Existing Security Policies from Panorama to Terraform code (Reverse Terraform for Palo Alto)

I created a script to reverse Terraform Security Policies from Panorama to be Managed by terraform Currently only works with Security Policies, i'll be working in the future to work with the rest of the configuration in a panorama. https://github.com/gabrielmontiel/PanosReverseTerraformI hope you find this useful, feel free to collaborate on it ...

pan-os-python - how to view Static ARP mappings within a Layer3Subinterface?

Hello,Using the Python panos module, I have succeeded in printing info about Layer3Subinterface objects that are children of an AggregateInterface object: from panos.firewall import Firewall from panos import network fw = Firewall(hostname="1.2.3.4", api_username="test", api_password="REDACTED", port=443, timeout=5, interval=3) agg_ifaces ...

Resolved! Empty tag values when trying to create object in ansible

In the examples i have seen - name: Create address objects paloaltonetworks.panos.panos_address_object: ip_address: "{{inventory_hostname}}" username: " {{ username }} " password: " {{ password }}" name: '{{ item.name }}' value: '{{ item.value }}' description: '{{ item.description }}' ...

zol123 by L1 Bithead
  • 3260 Views
  • 1 replies
  • 0 Likes

Resolved! Terraform Resource "Panos_security_policy" and the Warning listed for it.

Hello All, I'm trying to use the above Terraform resource for testing and was confused by the warning that is listed on the Registry (Hashicorp) page associated with this resource. It says, that ": This resource will remove any security rule not defined in this resource." what the * ? Will it remove all the existing rules that are on the fire...

New Firewall Build Process

Hopefully I am putting this post in the right place. Please feel free to let me know if I should place it elsewhere. I work at a place where we deploy a lot firewalls. At the moment, it is a bunch of the PA-220r devices, but we work with the PA-850s and soon to be, some virtual firewalls. I am looking for some advice as to how other compani...

Resolved! Configuring /modifying OSPF interface metric using ansible

Hi everyone, Is there an ansible module that enables us to modify the ospf interface metric?I looked up the panos ansible galaxy collection Version: 2.13.0 but I could not find anything relevant over there. The only option I could find is to use the panos_config_element_module. Thanks!

Prabhath by L1 Bithead
  • 4170 Views
  • 4 replies
  • 0 Likes

Automating HA key exchange

Hello all.Is there a way to automate the exchange of HA keys when creating an HA pair?I have gotten everything else using terraform/ansible/panorama. But I cannot figure out how to do HA key exchange programmatically.Anyone has done it? Thanks

Adding interfaces to OSPF with Ansible?

HiNow I am able to create l3 interfaces and add them to the VR by ansible. Now I want to add these interfaces to OSPF.I found modules for configuring static routes, configure basic VR and OSPF parameters like administrative distances, for redistribution and for BGP.But I found nothing to add interfaces to OSPF. Are the capabilities still missing...

  • 1031 Posts
  • 68 Subscriptions
LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2026 - Palo Alto Networks