Focus

Prisma Access

Get Notifications When Prisma Access IP Addresses Change

Table of Contents

Filter

Expand All | Collapse All

Prisma Access Docs

Release Notes
Version
- 6.0 Preferred and Innovation
- 5.2 Preferred and Innovation
- 5.1 Preferred and Innovation
- 5.0 Preferred and Innovation
- 4.2 Preferred
- 4.1 Preferred
- 4.0 Preferred
- 3.2 Preferred and Innovation
- 3.1 Preferred and Innovation
- 3.0 Preferred and Innovation
- 2.2 Preferred
Activation & Onboarding
Administration
Version
- 4.0 & Later
- 3.2 Preferred and Innovation
- 3.1 Preferred and Innovation
- 3.0 Preferred and Innovation
- 2.2 Preferred
- Prisma Access China
Integrations
Incidents & Alerts

API Examples for Retrieving Prisma Access IP Addresses

Use Legacy Scripts to Retrieve IP Addresses

Get Notifications When Prisma Access IP Addresses Change

Set up a notification to be informed of when Prisma Access IP addresses change.

Where Can I Use This?	What Do I Need?
Prisma Access (Managed by Strata Cloud Manager) Prisma Access (Managed by Panorama)	Prisma Access license

To be notified of public IP address changes for remote networks and loopback IP address changes for service connections, remote network connections, and mobile users, you can specify a URL at which you can be alerted of a change. Prisma Access uses an HTTP POST request to send the notification. This POST request includes the following notification data in JSON format:

  {"addrType": "public_ip", "addrChangeType": "add", "utc_timestamp": "2019-01-31 23:08:19.383894", "text": "Address List Change Notification"}

  {"addrType": "public_ip", "addrChangeType": "delete", "utc_timestamp": "2019-01-31 23:13:35.882151", "text": "Address List Change Notification"}

  {"addrType": "loopback_ip", "addrChangeType": "update", "utc_timestamp": "2019-01-31 23:29:27.100329", "text": "2018-05-11 23:29:27.100329"}

When you receive a notification, you must follow a two-step process. First, you must manually or program to retrieve the IP or loopback addresses. Then, you must update the IP addresses in your organization’s appropriate allow list to ensure that users don’t experience any disruption in service.

Prisma Access sends this notification a few seconds before the new IP address becomes active. We recommend that you use automation scripts to both retrieve and add the new IP addresses to an allow list in your network.

To add an IP address notification URL, complete the following task.

For Prisma Access (Managed by Strata Cloud Manager) deployments, go to WorkflowsPrisma Access SetupPrisma AccessInfrastructure Settings, click the gear to edit the settings, add an Egress IP Notification URL where you can be notified of IP address changes in your Prisma Access infrastructure, and Save your changes.
For Prisma Access (Managed by Panorama) deployments, go to PanoramaCloud ServicesConfigurationService Setup and add an IP Change Event Notification URL where you can be notified of IP address changes in your Prisma Access infrastructure, and click OK.

You can specify an IP address or an FQDN to an HTTP or HTTPS web service that’s listening for change notifications. Prisma Access sends these notifications from the internet using a public IP address.

You don’t need to commit your changes for the notification URL to take effect.

API Examples for Retrieving Prisma Access IP Addresses

Use Legacy Scripts to Retrieve IP Addresses

Prisma Access Docs

Get Notifications When Prisma Access IP Addresses Change

Prisma Access Docs

Get Notifications When Prisma Access IP Addresses Change

Activation & Onboarding

SASE

Cloud-Delivered Security Services

Network Security

Endpoints

Visibility & Monitoring

Best Practices

Experts Corner

Translated Documents