PAN-OS - Apply Security Profile to Policy Rule
This playbook is used to apply a PAN-OS security profile to a policy rule. The playbook performs the following tasks: - Accepts a rule name to apply the security profile to. - Applies the security profile to the rule if the rule exists. If not, creates the rule and applies. - Commits the configuration.
MITRE ATT&CK - Courses of Action · 17 tasks · 5 inputs · 0 outputs
Inputs
device-group— The device group to work on. Exists only in panorama!profile_type— Security profile type. Can be 'data-filtering', 'file-blocking', 'spyware', 'url-filtering', 'virus, 'vulnerability', or wildfire-analysis.'profile_name— The profile name to apply to the rule.pre-post-rulebase— Determines whether the rule is a pre-rulebase or post-rulebase rule, according to the rule structure. Exists only in panorama!tag— Tag for which to filter the rules.
Commands used
pan-os-apply-security-profile
pan-os-list-rules