From f4eec894e4e3e31b4a2fcb45ba61c12bd20c0a18 Mon Sep 17 00:00:00 2001 From: michal-dagan Date: Thu, 12 Sep 2024 10:24:51 +0300 Subject: [PATCH 01/10] update --- Packs/PAN-OS/Integrations/Panorama/Panorama.yml | 2 +- Packs/PAN-OS/ReleaseNotes/2_2_2.md | 6 ++++++ Packs/PAN-OS/pack_metadata.json | 2 +- 3 files changed, 8 insertions(+), 2 deletions(-) create mode 100644 Packs/PAN-OS/ReleaseNotes/2_2_2.md diff --git a/Packs/PAN-OS/Integrations/Panorama/Panorama.yml b/Packs/PAN-OS/Integrations/Panorama/Panorama.yml index cff5bc3d1941..c0f5584e5449 100644 --- a/Packs/PAN-OS/Integrations/Panorama/Panorama.yml +++ b/Packs/PAN-OS/Integrations/Panorama/Panorama.yml @@ -899,7 +899,7 @@ script: - contextPath: Panorama.Services.Protocol description: The service protocol. type: string - - contextPath: Panorama.Services.Descritpion + - contextPath: Panorama.Services.Description description: The service description. type: string - contextPath: Panorama.Services.DestinationPort diff --git a/Packs/PAN-OS/ReleaseNotes/2_2_2.md b/Packs/PAN-OS/ReleaseNotes/2_2_2.md new file mode 100644 index 000000000000..e37b3362c9fb --- /dev/null +++ b/Packs/PAN-OS/ReleaseNotes/2_2_2.md @@ -0,0 +1,6 @@ + +#### Integrations + +##### Palo Alto Networks PAN-OS + +- Fixed a typo in the context output ***Panorama.Services.Description*** of the ***panorama-create-service*** command. \ No newline at end of file diff --git a/Packs/PAN-OS/pack_metadata.json b/Packs/PAN-OS/pack_metadata.json index c190fb207333..337216e43ef1 100644 --- a/Packs/PAN-OS/pack_metadata.json +++ b/Packs/PAN-OS/pack_metadata.json @@ -2,7 +2,7 @@ "name": "PAN-OS by Palo Alto Networks", "description": "Manage Palo Alto Networks Firewall and Panorama. Use this pack to manage Prisma Access through Panorama. For more information see Panorama documentation.", "support": "xsoar", - "currentVersion": "2.2.1", + "currentVersion": "2.2.2", "author": "Cortex XSOAR", "url": "https://www.paloaltonetworks.com/cortex", "email": "", From 4e927a0d589913acabf88bf492b4c324bd84fcf4 Mon Sep 17 00:00:00 2001 From: michal-dagan Date: Thu, 12 Sep 2024 10:26:53 +0300 Subject: [PATCH 02/10] update --- Packs/PAN-OS/Integrations/Panorama/Panorama.yml | 2 +- Packs/PAN-OS/ReleaseNotes/2_2_2.md | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) diff --git a/Packs/PAN-OS/Integrations/Panorama/Panorama.yml b/Packs/PAN-OS/Integrations/Panorama/Panorama.yml index c0f5584e5449..f40b9a1bf3df 100644 --- a/Packs/PAN-OS/Integrations/Panorama/Panorama.yml +++ b/Packs/PAN-OS/Integrations/Panorama/Panorama.yml @@ -4373,7 +4373,7 @@ script: - contextPath: Panorama.Services.Protocol description: The service protocol. type: string - - contextPath: Panorama.Services.Descritpion + - contextPath: Panorama.Services.Description description: The service description. type: string - contextPath: Panorama.Services.DestinationPort diff --git a/Packs/PAN-OS/ReleaseNotes/2_2_2.md b/Packs/PAN-OS/ReleaseNotes/2_2_2.md index e37b3362c9fb..027541b14e90 100644 --- a/Packs/PAN-OS/ReleaseNotes/2_2_2.md +++ b/Packs/PAN-OS/ReleaseNotes/2_2_2.md @@ -3,4 +3,4 @@ ##### Palo Alto Networks PAN-OS -- Fixed a typo in the context output ***Panorama.Services.Description*** of the ***panorama-create-service*** command. \ No newline at end of file +- Fixed a typo in the context output ***Panorama.Services.Description*** of the ***pan-os-create-service*** command. \ No newline at end of file From f560919458454bd63ac006003c4e3beaaa5de983 Mon Sep 17 00:00:00 2001 From: michal-dagan Date: Thu, 12 Sep 2024 17:45:36 +0300 Subject: [PATCH 03/10] update --- Packs/PAN-OS/.pack-ignore | 6 - .../PAN-OS/Integrations/Panorama/Panorama.yml | 24 +++ Packs/PAN-OS/Integrations/Panorama/README.md | 174 +++++++----------- 3 files changed, 87 insertions(+), 117 deletions(-) diff --git a/Packs/PAN-OS/.pack-ignore b/Packs/PAN-OS/.pack-ignore index 2799ecb304cb..f6dbed4a2a9c 100644 --- a/Packs/PAN-OS/.pack-ignore +++ b/Packs/PAN-OS/.pack-ignore @@ -1,12 +1,6 @@ [file:PAN-OS] ignore=PA116 -[file:Panorama.yml] -ignore=IN136 - -[file:README.md] -ignore=RM102,RM106 - [file:playbook-PAN-OS_-_Block_IP_-_Static_Address_Group_README.md] ignore=RM106 diff --git a/Packs/PAN-OS/Integrations/Panorama/Panorama.yml b/Packs/PAN-OS/Integrations/Panorama/Panorama.yml index f40b9a1bf3df..a015f36485e2 100644 --- a/Packs/PAN-OS/Integrations/Panorama/Panorama.yml +++ b/Packs/PAN-OS/Integrations/Panorama/Panorama.yml @@ -5402,6 +5402,9 @@ script: - contextPath: Panorama.SecurityRule.Tags description: The tags for the rule. type: String + - contextPath: Panorama.SecurityRules.ProfileSetting + description: The profile setting group. + type: String execution: true - arguments: - description: The name of the rule to delete. @@ -5878,6 +5881,27 @@ script: - contextPath: Panorama.SecurityRule.SecurityProfile description: The security profile settings applied to the security rule. type: Unknown + - contextPath: Panorama.SecurityRule.SecurityProfile.file-blocking + description: The security profile setting for file-blocking in the security rule. + type: String + - contextPath: Panorama.SecurityRule.SecurityProfile.data-filtering + description: The security profile setting for data filtering in the security rule. + type: String + - contextPath: Panorama.SecurityRule.SecurityProfile.wildfire-analysis + description: The security profile setting for wildfire-analysis in the security rule. + type: String + - contextPath: Panorama.SecurityRule.SecurityProfile.spyware + description: The security profile setting for spyware in the security rule. + type: String + - contextPath: Panorama.SecurityRule.SecurityProfile.vulnerability + description: The security profile setting for vulnerability in the security rule. + type: String + - contextPath: Panorama.SecurityRule.SecurityProfile.virus + description: The security profile setting for viruses in the security rule. + type: String + - contextPath: Panorama.SecurityRule.SecurityProfile.url-filtering + description: The security profile setting for url-filtering in the security rule. + type: String - contextPath: Panorama.SecurityRule.Target.devices description: The devices targeted by the security rule. type: String diff --git a/Packs/PAN-OS/Integrations/Panorama/README.md b/Packs/PAN-OS/Integrations/Panorama/README.md index 7fd5879d7fd6..c3e7251ae1bf 100644 --- a/Packs/PAN-OS/Integrations/Panorama/README.md +++ b/Packs/PAN-OS/Integrations/Panorama/README.md @@ -1187,59 +1187,37 @@ Returns service details for the supplied service name. ### pan-os-create-service + *** Creates a service. - #### Base Command `pan-os-create-service` + #### Input | **Argument Name** | **Description** | **Required** | | --- | --- | --- | -| name | Name for the new service. | Required | -| protocol | Protocol for the new service. | Required | -| destination_port | Destination port for the new service. | Required | -| source_port | Source port for the new service. | Optional | -| description | Description for the new service. | Optional | +| name | The name for the new service. | Required | +| protocol | The protocol for the new service. Possible values are: tcp, udp, sctp. | Required | +| destination_port | The destination port for the new service. | Required | +| source_port | The source port for the new service. | Optional | +| description | The description for the new service. | Optional | | device-group | The device group for which to return addresses (Panorama instances). | Optional | -| tags | Tags for the new service. | Optional | - +| tags | The tags for the new service. | Optional | #### Context Output | **Path** | **Type** | **Description** | | --- | --- | --- | -| Panorama.Services.Name | string | Service name. | -| Panorama.Services.Protocol | string | Service protocol. | -| Panorama.Services.Description | string | Service description. | -| Panorama.Services.DestinationPort | string | Service destination port. | -| Panorama.Services.SourcePort | string | Service source port. | -| Panorama.Services.DeviceGroup | string | Device group for the service \(Panorama instances\). | -| Panorama.Services.Tags | String | Service tags. | - - -#### Command Example -```!pan-os-create-service name=guy_ser3 protocol=udp destination_port=36 description=bfds``` - -#### Context Example -```json -{ - "Panorama": { - "Services": { - "Description": "bfds", - "DestinationPort": "36", - "Name": "guy_ser3", - "Protocol": "udp" - } - } -} -``` - -#### Human Readable Output - ->Service was created successfully. +| Panorama.Services.Name | string | The service name. | +| Panorama.Services.Protocol | string | The service protocol. | +| Panorama.Services.Description | string | The service description. | +| Panorama.Services.DestinationPort | string | The service destination port. | +| Panorama.Services.SourcePort | string | The service source port. | +| Panorama.Services.DeviceGroup | string | The device group for the service \(Panorama instances\). | +| Panorama.Services.Tags | String | The service tags. | ### pan-os-delete-service *** @@ -2375,40 +2353,44 @@ Creates a policy rule. >Rule configured successfully. ### pan-os-custom-block-rule + *** Creates a custom block policy rule. - #### Base Command `pan-os-custom-block-rule` + #### Input | **Argument Name** | **Description** | **Required** | | --- | --- | --- | -| rulename | Name of the custom block policy rule to create. | Optional | -| object_type | Object type to block in the policy rule. Can be "ip", "address-group", "edl", or "custom-url-category". | Required | +| rulename | The name of the custom block policy rule to create. | Optional | +| object_type | The object type to block in the policy rule. Possible values are: ip, address-group, application, url-category, edl. | Required | | object_value | A comma-separated list of object values for the object_type argument. | Required | -| direction | Direction to block. Can be "to", "from", or "both". Default is "both". This argument is not applicable to the "custom-url-category" object_type. | Optional | -| pre_post | Pre rule or Post rule (Panorama instances). | Optional | +| direction | The direction to block. This argument is not applicable for the "custom-url-category" object_type. Possible values are: to, from, both. Default is both. | Optional | +| pre_post | The pre-rule or post-rule (Panorama instances). Possible values are: pre-rulebase, post-rulebase. | Optional | | target | Specifies a target firewall for the rule (Panorama instances). | Optional | -| log_forwarding | Log forwarding profile. | Optional | +| log_forwarding | The log forwarding profile. | Optional | | device-group | The device group for which to return addresses for the rule (Panorama instances). | Optional | -| tags | Tags for which to use for the custom block policy rule. | Optional | -| where | Where to move the rule. Can be "before", "after", "top", or "bottom". If you specify "before" or "after", you need to supply the "dst" argument. | Optional | -| dst | Destination rule relative to the rule that you are moving. This field is only relevant if you specify "before" or "after" in the "where" argument. | Optional | +| tags | The tags to use for the custom block policy rule. | Optional | +| where | Where to move the rule. If you specify "before" or "after", you need to supply the "dst" argument. Possible values are: before, after, top, bottom. Default is bottom. | Optional | +| dst | The destination rule relative to the rule that you are moving. This field is only relevant if you specify "before" or "after" in the "where" argument. | Optional | #### Context Output | **Path** | **Type** | **Description** | | --- | --- | --- | -| Panorama.SecurityRule.Name | string | Rule name. | -| Panorama.SecurityRule.Object | string | Blocked object. | -| Panorama.SecurityRule.Direction | string | Direction blocked. | -| Panorama.SecurityRule.Target | string | Target firewall \(Panorama instances\) | -| Panorama.SecurityRule.LogForwarding | string | Log forwarding profile \(Panorama instances\). | -| Panorama.SecurityRule.DeviceGroup | string | Device group for the rule \(Panorama instances\). | -| Panorama.SecurityRule.Tags | String | Rule tags. | +| Panorama.SecurityRule.Name | string | The rule name. | +| Panorama.SecurityRule.Object | string | The blocked object. | +| Panorama.SecurityRule.Direction | string | The direction blocked. | +| Panorama.SecurityRule.Target | string | The target firewall \(Panorama instances\). | +| Panorama.SecurityRule.LogForwarding | string | The log forwarding profile \(Panorama instances\). | +| Panorama.SecurityRule.DeviceGroup | string | The device group for the rule \(Panorama instances\). | +| Panorama.SecurityRule.Tags | String | The rule tags. | +| Panorama.SecurityRules.ProfileSetting | String | The profile setting group. | + + #### Command Example @@ -3086,6 +3068,7 @@ Returns a list of predefined Security Rules. (When passing a query, all other ar | Panorama.SecurityRule.LogForwardingProfile | String | The log forwarding profile applied to the security rule. | | Panorama.SecurityRule.NegateSource | String | Indicates whether the source is negated in the security rule. | | Panorama.SecurityRule.SecurityProfileGroup | String | The security profile group assigned to the security rule. | +| Panorama.SecurityRule.SecurityProfile | Unknown | The security profile settings applied to the security rule. | | Panorama.SecurityRule.SecurityProfile.url-filtering | String | The security profile setting for url-filtering in the security rule. | | Panorama.SecurityRule.SecurityProfile.data-filtering | String | The security profile setting for data-filtering in the security rule. | | Panorama.SecurityRule.SecurityProfile.file-blocking | String | The security profile setting for file-blocking in the security rule. | @@ -4310,19 +4293,20 @@ There are no input arguments for this command. >| I9805928 | NFR Support | NFR Support | 007DEMISTO1t | no | Never | November 25, 2019 | ### pan-os-get-security-profiles + *** Gets information for the specified security profile. - #### Base Command `pan-os-get-security-profiles` + #### Input | **Argument Name** | **Description** | **Required** | -|-------------------| --- | --- | -| security_profile | The security profile for which to get information. Can be "data-filtering", "file-blocking", "spyware", "url-filtering", "virus", "vulnerability", or "wildfire-analysis". | Optional | -| device-group | The device group for which to return security profiles. | Optional | +| --- | --- | --- | +| security_profile | The security profile for which to get information. Possible values are: data-filtering, file-blocking, spyware, url-filtering, virus, vulnerability, wildfire-analysis. | Optional | +| device-group | The device group for which to return security profiles. | Optional | #### Context Output @@ -4330,45 +4314,45 @@ Gets information for the specified security profile. | --- | --- | --- | | Panorama.Spyware.Name | String | The profile name. | | Panorama.Spyware.Rules.Action | String | The rule action. | -| Panorama.Spyware.Rules.Cateogry | String | The category for which to apply the rule. | +| Panorama.Spyware.Rules.Category | String | The category for which to apply the rule. | | Panorama.Spyware.Rules.Name | String | The rule name. | | Panorama.Spyware.Rules.Packet-capture | String | Whether packet capture is enabled. | | Panorama.Spyware.Rules.Severity | String | The rule severity. | -| Panorama.Spyware.Rules.Threat-name | String | The threat name for which to apply the rule. | +| Panorama.Spyware.Rules.Threat-name | String | The threat name to apply for the rule. | | Panorama.URLFilter.Name | String | The profile name. | | Panorama.URLFilter.Rules.Category.Action | String | The rule action to apply to the category. | | Panorama.URLFilter.Rules.Category.Name | String | The category name. | | Panorama.WildFire.Name | String | The WildFire profile name. | | Panorama.WildFire.Rules.Analysis | String | The rule analysis. | -| Panorama.WildFire.Rules.Application | String | The application for which to apply the rule. | -| Panorama.WildFire.Rules.File-type | String | The file type for which to apply the rule. | +| Panorama.WildFire.Rules.Application | String | The application to apply for the rule. | +| Panorama.WildFire.Rules.File-type | String | The file type to apply for the rule. | | Panorama.WildFire.Rules.Name | String | The rule name. | | Panorama.Vulnerability.Name | String | The vulnerability profile name. | -| Panorama.Vulnerability.Rules.Vendor-id | String | The vendor ID for which to apply the rule. | +| Panorama.Vulnerability.Rules.Vendor-id | String | The vendor ID to apply for the rule. | | Panorama.Vulnerability.Rules.Packet-capture | String | Whether packet capture is enabled. | | Panorama.Vulnerability.Rules.Host | String | The rule host. | | Panorama.Vulnerability.Rules.Name | String | The rule name. | -| Panorama.Vulnerability.Rules.Category | String | The category for which to apply the rule. | -| Panorama.Vulnerability.Rules.CVE | String | The CVE for which to apply the rule. | +| Panorama.Vulnerability.Rules.Category | String | The category to apply for the rule. | +| Panorama.Vulnerability.Rules.CVE | String | The CVE to apply for the rule. | | Panorama.Vulnerability.Rules.Action | String | The rule action. | | Panorama.Vulnerability.Rules.Severity | String | The rule severity. | -| Panorama.Vulnerability.Rules.Threat-name | String | The threat for which to apply the rule. | -| Panorama.Antivirus.Name | String | The Antivirus profile name. | +| Panorama.Vulnerability.Rules.Threat-name | String | The threat to apply for the rule. | +| Panorama.Antivirus.Name | String | The antivirus profile name. | | Panorama.Antivirus.Rules.Action | String | The rule action. | | Panorama.Antivirus.Rules.Name | String | The rule name. | | Panorama.Antivirus.Rules.WildFire-action | String | The WildFire action. | | Panorama.FileBlocking.Name | String | The file blocking profile name. | | Panorama.FileBlocking.Rules.Action | String | The rule action. | -| Panorama.FileBlocking.Rules.Application | String | The application for which to apply the rule. | -| Panorama.FileBlocking.Rules.File-type | String | The file type to apply the rule. | +| Panorama.FileBlocking.Rules.Application | String | The application to apply for the rule. | +| Panorama.FileBlocking.Rules.File-type | String | The file type to apply for the rule. | | Panorama.FileBlocking.Rules.Name | String | The rule name. | | Panorama.DataFiltering.Name | String | The data filtering profile name. | | Panorama.DataFiltering.Rules.Alert-threshold | String | The alert threshold. | -| Panorama.DataFiltering.Rules.Application | String | The application to apply the rule. | +| Panorama.DataFiltering.Rules.Application | String | The application to apply for the rule. | | Panorama.DataFiltering.Rules.Block-threshold | String | The block threshold. | | Panorama.DataFiltering.Rules.Data-object | String | The data object. | | Panorama.DataFiltering.Rules.Direction | String | The rule direction. | -| Panorama.DataFiltering.Rules.File-type | String | The file type for which to apply the rule. | +| Panorama.DataFiltering.Rules.File-type | String | The file type to apply for the rule. | | Panorama.DataFiltering.Rules.Log-severity | String | The log severity. | | Panorama.DataFiltering.Rules.Name | String | The rule name. | @@ -8001,25 +7985,25 @@ There is no context output for this command. >Nat rule test was edited successfully. ### pan-os-list-virtual-routers -*** -Returns a list of virtual routers of either Panorama/firewall instance. +*** +Returns a list of virtual routers of either a Panorama/firewall instance. #### Base Command `pan-os-list-virtual-routers` + #### Input | **Argument Name** | **Description** | **Required** | | --- | --- | --- | | virtual_router | The name of the virtual router to retrieve. If not mentioned, will bring all the virtual routers. | Optional | | template | The template that the virtual router is part of. Use only for Panorama instances. | Optional | -| show_uncommitted | Whether to show the un-committed virtual routers or not. can be true or false. Default is false. | Optional | +| show_uncommitted | Whether to show the un-committed virtual routers or not. Possible values are: true, false. Default is false. | Optional | | limit | The maximum number of virtual routers to retrieve. Will be used by default if the page argument was not provided. Default is 50. | Optional | -| page_size | The size of nat-rules to return. Default is 50. | Optional | +| page_size | The size of virtual-routers to return. Default is 50. | Optional | | page | The page at which to start listing virtual-routers. Must be a positive number. | Optional | - #### Context Output | **Path** | **Type** | **Description** | @@ -8033,6 +8017,8 @@ Returns a list of virtual routers of either Panorama/firewall instance. | Panorama.VirtualRouter.RedistributionProfile | Unknown | The redistribution profile\(s\) that the virtual router uses. | | Panorama.VirtualRouter.Multicast | Unknown | Information about the multicast of the virtual router. | | Panorama.VirtualRouter.StaticRoute | Unknown | The static routes\(s\) that the virtual router uses. | +| Panorama.VirtualRouter.ECMP | Unknown | The ECMP defined for the virtual router. | + #### Command example ```!pan-os-list-virtual-routers show_uncommitted=true``` @@ -8820,7 +8806,7 @@ Returns a list of tags from Panorama. | **Argument Name** | **Description** | **Required** | | --- | --- | --- | | include_shared_tags | Whether to include shared tags in the list. Possible values are: Yes, No. Default is No. | Optional | -| device_group | The device group that the tags are part of. | Optional | +| device-group | The device group that the tags are part of. | Optional | #### Context Output @@ -8830,41 +8816,7 @@ Returns a list of tags from Panorama. | Panorama.Tag.color | String | The color of the tag. | | Panorama.Tag.comment | String | The comment in the tag. | | Panorama.Tag.disable-override | String | Whether overriding the tag is disabled. | - -#### Command example -```!pan-os-list-tag include_shared_tags=No``` -#### Context Example -```json -{ - "Panorama": { - "Tag": [ - { - "name": "tag1", - "color": "color13" - }, - { - "name": "tag2", - "color": "color39" - }, - { - "name": "tag3", - "color": "color39", - "disable-override": "no", - "comments": "text text text" - } - ] - } -} -``` - -#### Human Readable Output - ->### Tags: ->|Name|Color|Comment| ->|---|---|---| ->| tag1 | color13 | | ->| tag2 | color39 | | ->| tag3 | color39 | text text text | +| Panorama.Tag.location | String | The tag's device group location. | ### pan-os-create-tag From 97c1680de522988f37812e8ba2cfcc0d265d0104 Mon Sep 17 00:00:00 2001 From: michal-dagan Date: Thu, 12 Sep 2024 17:48:26 +0300 Subject: [PATCH 04/10] update --- Packs/PAN-OS/Integrations/Panorama/README.md | 57 ++++++++++++++++++++ 1 file changed, 57 insertions(+) diff --git a/Packs/PAN-OS/Integrations/Panorama/README.md b/Packs/PAN-OS/Integrations/Panorama/README.md index c3e7251ae1bf..2915213a35f2 100644 --- a/Packs/PAN-OS/Integrations/Panorama/README.md +++ b/Packs/PAN-OS/Integrations/Panorama/README.md @@ -1219,6 +1219,28 @@ Creates a service. | Panorama.Services.DeviceGroup | string | The device group for the service \(Panorama instances\). | | Panorama.Services.Tags | String | The service tags. | + +#### Command Example +```!pan-os-create-service name=guy_ser3 protocol=udp destination_port=36 description=bfds``` + +#### Context Example +```json +{ + "Panorama": { + "Services": { + "Description": "bfds", + "DestinationPort": "36", + "Name": "guy_ser3", + "Protocol": "udp" + } + } +} +``` + +#### Human Readable Output + +>Service was created successfully. + ### pan-os-delete-service *** Deletes a service. @@ -8818,6 +8840,41 @@ Returns a list of tags from Panorama. | Panorama.Tag.disable-override | String | Whether overriding the tag is disabled. | | Panorama.Tag.location | String | The tag's device group location. | +#### Command example +```!pan-os-list-tag include_shared_tags=No``` +#### Context Example +```json +{ + "Panorama": { + "Tag": [ + { + "name": "tag1", + "color": "color13" + }, + { + "name": "tag2", + "color": "color39" + }, + { + "name": "tag3", + "color": "color39", + "disable-override": "no", + "comments": "text text text" + } + ] + } +} +``` + +#### Human Readable Output + +>### Tags: +>|Name|Color|Comment| +>|---|---|---| +>| tag1 | color13 | | +>| tag2 | color39 | | +>| tag3 | color39 | text text text | + ### pan-os-create-tag *** From 94c0c9de8bac8339aea8f7a4f51950f494ff774d Mon Sep 17 00:00:00 2001 From: michal-dagan Date: Thu, 12 Sep 2024 18:52:15 +0300 Subject: [PATCH 05/10] update --- Packs/PAN-OS/.pack-ignore | 3 +++ 1 file changed, 3 insertions(+) diff --git a/Packs/PAN-OS/.pack-ignore b/Packs/PAN-OS/.pack-ignore index f6dbed4a2a9c..8f4d3de8f512 100644 --- a/Packs/PAN-OS/.pack-ignore +++ b/Packs/PAN-OS/.pack-ignore @@ -4,6 +4,9 @@ ignore=PA116 [file:playbook-PAN-OS_-_Block_IP_-_Static_Address_Group_README.md] ignore=RM106 +[file:README.md] +ignore=RM106 + [file:playbook-PAN-OS_-_Block_URL_-_Custom_URL_Category_README.md] ignore=RM106 From d184459d65fa6d4a561b82228355647ce12c0bfe Mon Sep 17 00:00:00 2001 From: michal-dagan Date: Thu, 19 Sep 2024 10:29:50 +0300 Subject: [PATCH 06/10] update --- Packs/PAN-OS/ReleaseNotes/2_2_4.md | 7 +++++++ Packs/PAN-OS/pack_metadata.json | 2 +- 2 files changed, 8 insertions(+), 1 deletion(-) create mode 100644 Packs/PAN-OS/ReleaseNotes/2_2_4.md diff --git a/Packs/PAN-OS/ReleaseNotes/2_2_4.md b/Packs/PAN-OS/ReleaseNotes/2_2_4.md new file mode 100644 index 000000000000..1bc1ae110415 --- /dev/null +++ b/Packs/PAN-OS/ReleaseNotes/2_2_4.md @@ -0,0 +1,7 @@ + +#### Integrations + +##### Palo Alto Networks PAN-OS + +- Fixed a typo in the context output ***Panorama.Services.Description*** of the ***pan-os-create-service*** command. +- Fixed an issue where some of the outputs are missing from the README and the YML files. \ No newline at end of file diff --git a/Packs/PAN-OS/pack_metadata.json b/Packs/PAN-OS/pack_metadata.json index 2c40cf071a40..2c5eab599d06 100644 --- a/Packs/PAN-OS/pack_metadata.json +++ b/Packs/PAN-OS/pack_metadata.json @@ -2,7 +2,7 @@ "name": "PAN-OS by Palo Alto Networks", "description": "Manage Palo Alto Networks Firewall and Panorama. Use this pack to manage Prisma Access through Panorama. For more information see Panorama documentation.", "support": "xsoar", - "currentVersion": "2.2.3", + "currentVersion": "2.2.4", "author": "Cortex XSOAR", "url": "https://www.paloaltonetworks.com/cortex", "email": "", From 27ad279d9959e3490949957e4c1702c65044f8b3 Mon Sep 17 00:00:00 2001 From: michal-dagan Date: Thu, 19 Sep 2024 10:30:22 +0300 Subject: [PATCH 07/10] update --- Packs/PAN-OS/ReleaseNotes/2_2_4.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/Packs/PAN-OS/ReleaseNotes/2_2_4.md b/Packs/PAN-OS/ReleaseNotes/2_2_4.md index 1bc1ae110415..989f542b4904 100644 --- a/Packs/PAN-OS/ReleaseNotes/2_2_4.md +++ b/Packs/PAN-OS/ReleaseNotes/2_2_4.md @@ -4,4 +4,4 @@ ##### Palo Alto Networks PAN-OS - Fixed a typo in the context output ***Panorama.Services.Description*** of the ***pan-os-create-service*** command. -- Fixed an issue where some of the outputs are missing from the README and the YML files. \ No newline at end of file +- Fixed an issue where some of the context outputs were missing from the README and the YML files. \ No newline at end of file From fe14a58a8a665df871babee908a0155197952a25 Mon Sep 17 00:00:00 2001 From: michal-dagan Date: Sun, 29 Sep 2024 15:02:15 +0300 Subject: [PATCH 08/10] fix RM102 --- Packs/PAN-OS/Integrations/Panorama/README.md | 36 ++++++++++++++++---- 1 file changed, 30 insertions(+), 6 deletions(-) diff --git a/Packs/PAN-OS/Integrations/Panorama/README.md b/Packs/PAN-OS/Integrations/Panorama/README.md index c4c38c2111d1..49581316bd21 100644 --- a/Packs/PAN-OS/Integrations/Panorama/README.md +++ b/Packs/PAN-OS/Integrations/Panorama/README.md @@ -3042,6 +3042,9 @@ Deprecated. Retrieves traffic log query data by job id. | Panorama.TrafficLogs.Logs.Action | string | Action of the traffic log. | | Panorama.TrafficLogs.Logs.ActionSource | string | Action source of the traffic log. | | Panorama.TrafficLogs.Logs.Application | string | Application of the traffic log. | +| Panorama.TrafficLogs.Logs.Bytes | string | The total log bytes. | +| Panorama.TrafficLogs.Logs.BytesReceived | string | The log bytes received. | +| Panorama.TrafficLogs.Logs.BytesSent | string | The log bytes sent. | | Panorama.TrafficLogs.Logs.Category | string | Category of the traffic log. | | Panorama.TrafficLogs.Logs.DeviceName | string | Device name of the traffic log. | | Panorama.TrafficLogs.Logs.Destination | string | Destination of the traffic log. | @@ -4065,7 +4068,9 @@ Checks the PAN-OS software version from the repository. #### Context Output -There is no context output for this command. +| **Path** | **Type** | **Description** | +| --- | --- | --- | +| Panorama.LatestVersions | unknown | Latest software versions. | #### Command Example ```!pan-os-check-latest-panos-software``` @@ -8257,10 +8262,20 @@ Returns a list of redistribution-profiles of a specific virtual-router of either | template | The template that the redistribution profiles and virtual-router are part of. Use only for Panorama instances. | Optional | | limit | The maximum number of redistribution-profiles to retrieve. Default is 50. | Optional | - #### Context Output -There is no context output for this command. +| **Path** | **Type** | **Description** | +| --- | --- | --- | +| Panorama.RedistributionProfile.Name | String | The name of the profile. | +| Panorama.RedistributionProfile.Priority | String | The priority of the profile. | +| Panorama.RedistributionProfile.Action | String | The action of the profile. | +| Panorama.RedistributionProfile.FilterInterface | Unknown | The filter interface\(s\). | +| Panorama.RedistributionProfile.FilterType | Unknown | The filter type\(s\). | +| Panorama.RedistributionProfile.FilterDestination | Unknown | The filter destination\(s\). | +| Panorama.RedistributionProfile.FilterNextHop | Unknown | The filter next hop. | +| Panorama.RedistributionProfile.BGP | Unknown | The BGP of the profile. | +| Panorama.RedistributionProfile.OSPF | Unknown | The OSPF of the profile. | + #### Command example ```!pan-os-list-redistribution-profiles virtual_router=test``` #### Context Example @@ -9184,9 +9199,18 @@ Gets the audit comment of a rule. | **Argument Name** | **Description** | **Required** | | --- | --- | --- | | rule_name | The rule name to apply. | Required | -| rule_type | The rule type. Possible values are: Security Rule, NAT Rule, PBF Rule. | Optional | -| pre_post | Pre rule or Post rule (Panorama instances). | Optional | -| device_group | The device group that the tag will be part of. | Optional | +| rule_type | The rule type. Possible values are: Security Rule, NAT Rule, PBF Rule. | Required | +| pre_post | The pre-rule or post-rule (Panorama instances only). Possible values are: Pre, Post. | Optional | +| device-group | The device group that the rule is part of. | Optional | + +#### Context Output + +| **Path** | **Type** | **Description** | +| --- | --- | --- | +| Panorama.AuditComment.comment | String | The audit comment ot the rule. | +| Panorama.AuditComment.rule_name | String | The rule name. | +| Panorama.AuditComment.rule_type | String | The rule type. | + #### Command example ```!pan-os-get-audit-comment rule_name="test" rule_type="Security Rule" pre_post=Post``` From 8b7d14ccc45e8d283e6ec678e18916fb8453c8f5 Mon Sep 17 00:00:00 2001 From: michal-dagan Date: Sun, 29 Sep 2024 15:54:43 +0300 Subject: [PATCH 09/10] merge from master --- Packs/PAN-OS/ReleaseNotes/2_2_5.md | 7 +++++++ Packs/PAN-OS/pack_metadata.json | 2 +- 2 files changed, 8 insertions(+), 1 deletion(-) create mode 100644 Packs/PAN-OS/ReleaseNotes/2_2_5.md diff --git a/Packs/PAN-OS/ReleaseNotes/2_2_5.md b/Packs/PAN-OS/ReleaseNotes/2_2_5.md new file mode 100644 index 000000000000..c667810d8541 --- /dev/null +++ b/Packs/PAN-OS/ReleaseNotes/2_2_5.md @@ -0,0 +1,7 @@ + +#### Integrations + +##### Palo Alto Networks PAN-OS + +- Fixed a typo in the context output **Panorama.Services.Description** of the ***pan-os-create-service*** command. +- Fixed an issue where some of the context outputs were missing from the README and the YML files. \ No newline at end of file diff --git a/Packs/PAN-OS/pack_metadata.json b/Packs/PAN-OS/pack_metadata.json index 2c5eab599d06..c4652cd94b67 100644 --- a/Packs/PAN-OS/pack_metadata.json +++ b/Packs/PAN-OS/pack_metadata.json @@ -2,7 +2,7 @@ "name": "PAN-OS by Palo Alto Networks", "description": "Manage Palo Alto Networks Firewall and Panorama. Use this pack to manage Prisma Access through Panorama. For more information see Panorama documentation.", "support": "xsoar", - "currentVersion": "2.2.4", + "currentVersion": "2.2.5", "author": "Cortex XSOAR", "url": "https://www.paloaltonetworks.com/cortex", "email": "", From 3177eeda189d885b7fc99136f58c8d931137e219 Mon Sep 17 00:00:00 2001 From: michal-dagan <109464765+michal-dagan@users.noreply.github.com> Date: Mon, 30 Sep 2024 13:58:41 +0300 Subject: [PATCH 10/10] Apply suggestions from code review Co-authored-by: ShirleyDenkberg <62508050+ShirleyDenkberg@users.noreply.github.com> --- Packs/PAN-OS/Integrations/Panorama/README.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/Packs/PAN-OS/Integrations/Panorama/README.md b/Packs/PAN-OS/Integrations/Panorama/README.md index 49581316bd21..f98fe6a661fa 100644 --- a/Packs/PAN-OS/Integrations/Panorama/README.md +++ b/Packs/PAN-OS/Integrations/Panorama/README.md @@ -3043,7 +3043,7 @@ Deprecated. Retrieves traffic log query data by job id. | Panorama.TrafficLogs.Logs.ActionSource | string | Action source of the traffic log. | | Panorama.TrafficLogs.Logs.Application | string | Application of the traffic log. | | Panorama.TrafficLogs.Logs.Bytes | string | The total log bytes. | -| Panorama.TrafficLogs.Logs.BytesReceived | string | The log bytes received. | +| Panorama.TrafficLogs.Logs.BytesReceived | string | The log bytes received. | | Panorama.TrafficLogs.Logs.BytesSent | string | The log bytes sent. | | Panorama.TrafficLogs.Logs.Category | string | Category of the traffic log. | | Panorama.TrafficLogs.Logs.DeviceName | string | Device name of the traffic log. | @@ -9207,7 +9207,7 @@ Gets the audit comment of a rule. | **Path** | **Type** | **Description** | | --- | --- | --- | -| Panorama.AuditComment.comment | String | The audit comment ot the rule. | +| Panorama.AuditComment.comment | String | The audit comment of the rule. | | Panorama.AuditComment.rule_name | String | The rule name. | | Panorama.AuditComment.rule_type | String | The rule type. |