az palo-alto cloudngfw local-rulestack local-rule
Note
This reference is part of the palo-alto-networks extension for the Azure CLI (version 2.51.0 or higher). The extension will automatically install the first time you run an az palo-alto cloudngfw local-rulestack local-rule command. Learn more about extensions.
Manage local-rulestack local-rule resource.
Commands
| Name | Description | Type | Status |
|---|---|---|---|
| az palo-alto cloudngfw local-rulestack local-rule create |
Create a LocalRulesResource. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule delete |
Delete a LocalRulesResource. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule list |
List LocalRulesResource resources by LocalRulestacks. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule refresh-counter |
Refresh counters. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule reset-counter |
Reset counters. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule show |
Get a LocalRulesResource. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule show-counter |
Get counters. |
Extension | GA |
| az palo-alto cloudngfw local-rulestack local-rule wait |
Place the CLI in a waiting state until a condition is met. |
Extension | GA |
az palo-alto cloudngfw local-rulestack local-rule create
Create a LocalRulesResource.
az palo-alto cloudngfw local-rulestack local-rule create --local-rulestack-name
--priority
--resource-group
--rule-name
[--action-type {Allow, DenyResetBoth, DenyResetServer, DenySilent}]
[--applications]
[--audit-comment]
[--category]
[--decryption-rule-type {None, SSLInboundInspection, SSLOutboundInspection}]
[--description]
[--destination]
[--enable-logging {DISABLED, ENABLED}]
[--etag]
[--inbound-certificate --inbound-inspection-certificate]
[--negate-destination {FALSE, TRUE}]
[--negate-source {FALSE, TRUE}]
[--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
[--protocol]
[--protocol-port-list]
[--rule-state {DISABLED, ENABLED}]
[--source]
[--tags]Examples
Create a LocalRulesResource
az palo-alto cloudngfw local-rulestack local-rule create -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --rule-name MyLocalRule --priority "1" --action-type "Allow" --enable-logging "DISABLED" --rule-state "DISABLED"Required Parameters
LocalRulestack resource name.
Local Rule priority.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Rule name.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Rule action.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
| Accepted values: | Allow, DenyResetBoth, DenyResetServer, DenySilent |
Array of rule applications Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Rule comment.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Rule category Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Enable or disable decryption.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
| Accepted values: | None, SSLInboundInspection, SSLOutboundInspection |
Rule description.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Destination address Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Enable or disable logging.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
| Accepted values: | DISABLED, ENABLED |
Etag info.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Inbound Inspection Certificate.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Cidr should not be 'any'.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
| Accepted values: | FALSE, TRUE |
Cidr should not be 'any'.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
| Accepted values: | FALSE, TRUE |
Do not wait for the long-running operation to finish.
| Property | Value |
|---|---|
| Accepted values: | 0, 1, f, false, n, no, t, true, y, yes |
Any, application-default, TCP:number, UDP:number.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
| Default value: | application-default |
Prot port list Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
State of this rule.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
| Accepted values: | DISABLED, ENABLED |
Source address Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Tag for rule Support shorthand-syntax, json-file and yaml-file. Try "??" to show more.
| Property | Value |
|---|---|
| Parameter group: | Properties Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az palo-alto cloudngfw local-rulestack local-rule delete
Delete a LocalRulesResource.
az palo-alto cloudngfw local-rulestack local-rule delete [--ids]
[--local-rulestack-name]
[--no-wait {0, 1, f, false, n, no, t, true, y, yes}]
[--priority]
[--resource-group]
[--subscription]Examples
Delete a LocalRulesResource
az palo-alto cloudngfw local-rulestack local-rule delete -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
LocalRulestack resource name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Do not wait for the long-running operation to finish.
| Property | Value |
|---|---|
| Accepted values: | 0, 1, f, false, n, no, t, true, y, yes |
Local Rule priority.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az palo-alto cloudngfw local-rulestack local-rule list
List LocalRulesResource resources by LocalRulestacks.
az palo-alto cloudngfw local-rulestack local-rule list --local-rulestack-name
--resource-group
[--max-items]
[--next-token]Examples
List LocalRulesResource resources by LocalRulestacks
az palo-alto cloudngfw local-rulestack local-rule list -g MyResourceGroup --local-rulestack-name MyLocalRulestacksRequired Parameters
LocalRulestack resource name.
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Total number of items to return in the command's output. If the total number of items available is more than the value specified, a token is provided in the command's output. To resume pagination, provide the token value in --next-token argument of a subsequent command.
| Property | Value |
|---|---|
| Parameter group: | Pagination Arguments |
Token to specify where to start paginating. This is the token value from a previously truncated response.
| Property | Value |
|---|---|
| Parameter group: | Pagination Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az palo-alto cloudngfw local-rulestack local-rule refresh-counter
Refresh counters.
az palo-alto cloudngfw local-rulestack local-rule refresh-counter [--firewall-name]
[--ids]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]Examples
Refresh counters
az palo-alto cloudngfw local-rulestack local-rule refresh-counter -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Firewall resource name.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
LocalRulestack resource name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Local Rule priority.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az palo-alto cloudngfw local-rulestack local-rule reset-counter
Reset counters.
az palo-alto cloudngfw local-rulestack local-rule reset-counter [--firewall-name]
[--ids]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]Examples
Reset counters
az palo-alto cloudngfw local-rulestack local-rule reset-counter -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Firewall resource name.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
LocalRulestack resource name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Local Rule priority.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az palo-alto cloudngfw local-rulestack local-rule show
Get a LocalRulesResource.
az palo-alto cloudngfw local-rulestack local-rule show [--ids]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]Examples
Get a LocalRulesResource
az palo-alto cloudngfw local-rulestack local-rule show -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
LocalRulestack resource name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Local Rule priority.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az palo-alto cloudngfw local-rulestack local-rule show-counter
Get counters.
az palo-alto cloudngfw local-rulestack local-rule show-counter [--firewall-name]
[--ids]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]Examples
Get counters
az palo-alto cloudngfw local-rulestack local-rule get-counter -g MyResourceGroup --local-rulestack-name MyLocalRulestacks --priority "1"Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Firewall resource name.
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
LocalRulestack resource name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Local Rule priority.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
az palo-alto cloudngfw local-rulestack local-rule wait
Place the CLI in a waiting state until a condition is met.
az palo-alto cloudngfw local-rulestack local-rule wait [--created]
[--custom]
[--deleted]
[--exists]
[--ids]
[--interval]
[--local-rulestack-name]
[--priority]
[--resource-group]
[--subscription]
[--timeout]
[--updated]Optional Parameters
The following parameters are optional, but depending on the context, one or more might become required for the command to execute successfully.
Wait until created with 'provisioningState' at 'Succeeded'.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | False |
Wait until the condition satisfies a custom JMESPath query. E.g. provisioningState!='InProgress', instanceView.statuses[?code=='PowerState/running'].
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
Wait until deleted.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | False |
Wait until the resource exists.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | False |
One or more resource IDs (space-delimited). It should be a complete resource ID containing all information of 'Resource Id' arguments. You should provide either --ids or other 'Resource Id' arguments.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Polling interval in seconds.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | 30 |
LocalRulestack resource name.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Local Rule priority.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name of resource group. You can configure the default group using az configure --defaults group=<name>.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Name or ID of subscription. You can configure the default subscription using az account set -s NAME_OR_ID.
| Property | Value |
|---|---|
| Parameter group: | Resource Id Arguments |
Maximum wait in seconds.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | 3600 |
Wait until updated with provisioningState at 'Succeeded'.
| Property | Value |
|---|---|
| Parameter group: | Wait Condition Arguments |
| Default value: | False |
Global Parameters
Increase logging verbosity to show all debug logs.
| Property | Value |
|---|---|
| Default value: | False |
Show this help message and exit.
Only show errors, suppressing warnings.
| Property | Value |
|---|---|
| Default value: | False |
Output format.
| Property | Value |
|---|---|
| Default value: | json |
| Accepted values: | json, jsonc, none, table, tsv, yaml, yamlc |
JMESPath query string. See http://jmespath.org/ for more information and examples.
Increase logging verbosity. Use --debug for full debug logs.
| Property | Value |
|---|---|
| Default value: | False |
