Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊
This playbook allows blocking/allowing of IPs in Cisco ASA, using a Network Object Group. The Network Object Group itself should be part of an Access Control Entry.
| Attribute | Value |
|---|---|
| Type | Playbook |
| Solution | Standalone Content |
| Source | View on GitHub |
This playbook uses 4 Logic App connectors / built-in actions:
| Connector / Action | Type | Connections | Actions |
|---|---|---|---|
azuresentinel |
Managed | 1 | 3 |
cisco-asav-connector |
Managed | 0 | 3 |
teams |
Managed | 1 | 0 |
CiscoASAConnector |
Custom | 1 | 0 |
azuresentinel (Managed)| Action | Method | Endpoint | Other |
|---|---|---|---|
| Entities_-_Get_IPs | post | /entities/ip |
— |
| Add_comment_to_incident_(V3) | post | /Incidents/Comment |
— |
| Update_incident | put | /Incidents |
— |
cisco-asav-connector (Managed)| Action | Method | Endpoint | Other |
|---|---|---|---|
| Fetch_a_network_object_group | get | /api/objects/networkobjectgroups/@{encodeURIComponent(variables('Network Object Group object ID'))} |
— |
| Patch_members_of_a_network_object_group_to_add_IPAddress | patch | /api/objects/networkobjectgroups/@{encodeURIComponent(variables('Network Object Group object ID'))} |
— |
| Patch_members_of_a_network_object_group_to_remove_IPAddress | patch | /api/objects/networkobjectgroups/@{encodeURIComponent(variables('Network Object Group object ID'))} |
— |
Browse: 🏠 · Solutions · Connectors · Methods · Tables · Content · Parsers · ASIM Parsers · ASIM Products · Logic Apps · 📊