As PAN-OS continues to grow its feature capabilities we also strive to extend our automated solution sets. This current release of content not only configures the NGFW but also will baseline the firewall and validate configuration requirements. The goal is to replace time consuming documentation research and UI clicks with tested, ready to use configurations and validation assessments.
The CIS benchmark provides an industry standard set of checks for the PAN-OS NGFW.
Instead of manually assessing the NGFW configuration elements and system state, this quickplay does the work providing an output report showing all of the benchmarks, scoring, and links for configuration remediation.
Additional CIS benchmark information can be found in the CIS benchmark quickplay article.
This Ansible quickplay, run natively or as a skillet, completes a series of tasks to baseline a newly deployed firewall including: licensing, content updates, and software upgrades or downgrades.
Additional quickplay information can be found in the Ansible Playbook to Baseline the NGFW article.
This suite of scripts and skillets allows the user to query the NGFW to retrieve various sets of information including:
Additional PAN-OS query script information can be found in the PAN-OS query script article.
The Local Government skillets are intended for local government NGFW configurations including pre-built region based blocking and compliance tags.
Additional Local Gov NGFW Configuration information can be found in the Local Gov NGFW Configurations article.
We're excited to release these new quickplay solution updates to the community.
If you have ideas for quickplay solutions drop us a note in our Discussion Board. We're always looking to see where we can help the community simplify deployments, configuration, and assessment of the NGFW.