-
Notifications
You must be signed in to change notification settings - Fork 1.6k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
PAN-OS - DNS Sinkhole #27700
Merged
Merged
PAN-OS - DNS Sinkhole #27700
Changes from 14 commits
Commits
Show all changes
16 commits
Select commit
Hold shift + click to select a range
c5ff17a
Added playbooks, tests, images, and formatted
idovandijk 8453796
Merge branch 'master' of github.com:demisto/content into pan-os-dns-s…
idovandijk d1e7243
fixed conf.json and updated playbook description
idovandijk cc44668
Fixed validation issues in both playbooks
idovandijk 23b7354
Added READMEs and release notes
idovandijk 7555f8c
Merged from master while keeping existing pack version (I am upping i…
idovandijk 21c2bc9
Merge branch 'master' of github.com:demisto/content into pan-os-dns-s…
idovandijk 7c6705a
Removed old files, added new files, docs, pb images, and new RN. Also…
idovandijk 3de9246
Merge branch 'master' of github.com:demisto/content into pan-os-dns-s…
idovandijk 150b1b9
Merged changes from master
idovandijk d76f4d3
Updated playbook with fixes, pb image, and pb readme
idovandijk 0234c5b
Merge branch 'master' into pan-os-dns-sinkhole
idovandijk 4e33c5e
Fixed test configurations for playbooks
idovandijk 839f8c6
Fixed test configuration in conf.json to use FW and not Panorama
idovandijk 3046d4c
Apply suggestions from tech docs
idovandijk 2c8f756
Merge branch 'master' into pan-os-dns-sinkhole
idovandijk File filter
Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
There are no files selected for viewing
1,042 changes: 1,042 additions & 0 deletions
1,042
Packs/PAN-OS/Playbooks/PAN-OS_-_Add_Anti-Spyware_Security_Profile_To_Rule.yml
Large diffs are not rendered by default.
Oops, something went wrong.
58 changes: 58 additions & 0 deletions
58
...s/PAN-OS/Playbooks/PAN-OS_-_Add_Anti-Spyware_Security_Profile_To_Rule_README.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change | ||||
---|---|---|---|---|---|---|
@@ -0,0 +1,58 @@ | ||||||
This playbook is designed to enhance the security level in PAN-OS firewalls by safely adding an Anti-Spyware security profile to a security rule. | ||||||
|
||||||
The playbook provides control over the behavior when a rule: | ||||||
- Already has an Anti-Spyware profile | ||||||
- Uses a security profile group, with or without an Anti-Spyware profile | ||||||
|
||||||
The output of the playbook is the Anti-Spyware profile configured for the rule upon playbook completion. This can be: | ||||||
- The initial profile, if untouched | ||||||
- A newly overwritten profile | ||||||
- A newly added profile | ||||||
|
||||||
|
||||||
## Dependencies | ||||||
|
||||||
This playbook uses the following sub-playbooks, integrations, and scripts. | ||||||
|
||||||
### Sub-playbooks | ||||||
|
||||||
This playbook does not use any sub-playbooks. | ||||||
|
||||||
### Integrations | ||||||
|
||||||
* Panorama | ||||||
|
||||||
### Scripts | ||||||
|
||||||
* SetAndHandleEmpty | ||||||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more.
Suggested change
|
||||||
|
||||||
### Commands | ||||||
|
||||||
* pan-os-get-security-profiles | ||||||
* pan-os-create-anti-spyware-best-practice-profile | ||||||
* pan-os-apply-security-profile | ||||||
* pan-os-list-rules | ||||||
|
||||||
## Playbook Inputs | ||||||
|
||||||
--- | ||||||
|
||||||
| **Name** | **Description** | **Default Value** | **Required** | | ||||||
| --- | --- | --- | --- | | ||||||
| RuleName | The name of the rule to which the Security Profile should be added. | | Required | | ||||||
| SecurityProfileName | The name of the Security Profile that should be added to the rule. If it doesn't exit, one will be created with the name specified here. | | Required | | ||||||
| OverwriteProfileIfExists | Whether to overwrite an existing Anti-Spyware Security Profile.<br/>If an Anti-Spyware Security Profile is configured to the rule through a group of profiles and not a single profile, setting this input's value to True will overwrite the existing profile within the group instead of applying the profile and overwriting the whole group.<br/><br/>Possible values are: True to overwrite, False to keep existing. | False | Required | | ||||||
|
||||||
## Playbook Outputs | ||||||
|
||||||
--- | ||||||
|
||||||
| **Path** | **Description** | **Type** | | ||||||
| --- | --- | --- | | ||||||
| AntiSpywareProfileNameApplied | The name of the Anti-Spyware Security Profile that is applied to the rule. The value could be the name of the profile that was added, overwritten with, or left untouched - for the specified rule. | unknown | | ||||||
|
||||||
## Playbook Image | ||||||
|
||||||
--- | ||||||
|
||||||
![PAN-OS - Add Anti-Spyware Security Profile To Rule](../doc_files/PAN-OS_-_Add_Anti-Spyware_Security_Profile_To_Rule.png) |
Oops, something went wrong.
Oops, something went wrong.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.