Infoblox’s global team of threat hunters uncovers a DNS operation with the ability to bypass traditional security measures and control the Great Firewall of China. Read about “Muddling Meerkat” and the many other threat actors discovered by Infoblox Threat Intel here.

Infoblox TIDE Solution Integrations

This is an open group. Sign in and click the "Join Group" button to become a group member and start posting.
Integration with Palo Alto Firewalls
[ Edited ]
Posts: 172
Registered: ‎09-09-2015
Posts: 82

Infoblox Threat Intelligence Data Exchange (TIDE) leverages highly accurate machine-readable threat intelligence (MRTI) data to aggregate and selectively distribute data across a broad range of security infrastructure.


Palo Alto Firewalls can leverage Infoblox's threat intelligence and block access to malicious destinations by domain names, ip-addresses and URLs. 


The attached guide provides you step by step instruction how to load ActiveTrust IOCs on Palo Alto firewalls, meanwhile the guide assumes that you already have expirience with ActiveTrust TIDE REST API and doesn't cover how to retrive indicators from ActiveTrust TIDE. If you are not familiar with TIDE API, please read a quick start guide attached to this post.


Please keep in mind that Palo Alto firewalls support limited quantity indicators. Please refer PAN-OS Administrator's guide for details.



Showing results for 
Search instead for 
Did you mean: