1. Home
    2. PAN-OS
    3. PAN-OS® and Panorama™ XML API Usage Guide
    4. PAN-OS XML API Request Types
    5. Get Active Configuration
    End-of-Life (EoL)
    Previous
    Next
    Use XPath to Get Active Configuration Use XPath to Get ARP Information
    Use XPath to Get Active Configuration
    Use action=show with no additional parameters to retrieve the entire active configuration.
    Use XPath to Get Active Configuration
    Use the xpath parameter to target a specific portion of the configuration. For example, to retrieve just the security rulebase: xpath=/config/devices/entry/vsys/entry/rulebase/security : https://firewall/api/?type=config&action=show&key=apikey&xpath=/config/devices/entry/vsys/entry/rulebase/security There is no trailing backslash character at the end of the XPath.
    Confirm that the XML response for the query looks similar to the following (truncated): <response status="success"> <result> <security> <rules> <entry name="IT DNS Services"> <profile-setting> <group> <member>best-practice</member> </group> </profile-setting> <to> <member>untrust</member> </to> <from> <member>trust</member> </from> <source> <member>any</member> </source> <destination> <member>Data Center</member> </destination> <source-user> <member>any</member> </source-user> <category> <member>any</member> </category> <application> <member>dns</member> </application> <service> <member>application-default</member> </service> <hip-profiles> <member>any</member> </hip-profiles> <action>allow</action> <tag> <member>Best Practice</member> </tag> <log-start>no</log-start> <log-setting>default</log-setting> </entry> ... </rules> </security> </result> </response>
    Use XPath to Get ARP Information
    Use XPath to Get ARP Information
    Use the following request to retrieve ARP information: https://firewall//api/?type=op&command=<show><arp><entry name='all'/></arp></show>
    Confirm that the XML response for the query looks like the following (truncated): <response status="success"> <result> <max>3000</max> <total>16</total> <timeout>1800</timeout> <dp>dp0</dp> <entries> <entry> <status>c</status> <ip>10.47.0.1</ip> <mac>00:1b:17:00:2f:13</mac> <ttl>1743</ttl> <interface>ethernet1/1</interface> <port>ethernet1/1</port> </entry> <entry> <status>c</status> <ip>10.47.0.10</ip> <mac>00:50:56:93:68:6f</mac> <ttl>386</ttl> <interface>ethernet1/1</interface> <port>ethernet1/1</port> </entry> <!-- truncated --> </result> </response>
    Previous
    Next

    Recommended For You

    Recommended Videos

    Recommended videos not found.

    © 2022 Palo Alto Networks, Inc. All rights reserved.

    Techdocs Logo