Palo Alto Networks · JSON Structure

Strata Cloud Manager Api Security Rule Structure

A security policy rule defining traffic matching criteria and enforcement action applied by managed firewalls.

Type: object Properties: 18
Cloud SecurityCybersecurityFirewallNetwork SecuritySASESOARThreat IntelligenceXDR

SecurityRule is a JSON Structure definition published by Palo Alto Networks, describing 18 properties. It conforms to the https://json-structure.org/meta/core/v0/# meta-schema.

Properties

id name folder position from to source destination source_user application service category action log_setting profile_setting disabled description tag

Meta-schema: https://json-structure.org/meta/core/v0/#

JSON Structure

Raw ↑ 
{
  "$schema": "https://json-structure.org/meta/core/v0/#",
  "$id": "https://raw.githubusercontent.com/api-evangelist/palo-alto-networks/refs/heads/main/json-structure/strata-cloud-manager-api-security-rule-structure.json",
  "name": "SecurityRule",
  "description": "A security policy rule defining traffic matching criteria and enforcement action applied by managed firewalls.",
  "type": "object",
  "properties": {
    "id": {
      "type": "uuid"
    },
    "name": {
      "type": "string"
    },
    "folder": {
      "type": "string"
    },
    "position": {
      "type": "string",
      "enum": [
        "pre",
        "post"
      ]
    },
    "from": {
      "type": "array",
      "description": "Source security zones.",
      "items": {
        "type": "string"
      }
    },
    "to": {
      "type": "array",
      "description": "Destination security zones.",
      "items": {
        "type": "string"
      }
    },
    "source": {
      "type": "array",
      "description": "Source addresses or address groups (use \"any\" for all).",
      "items": {
        "type": "string"
      }
    },
    "destination": {
      "type": "array",
      "description": "Destination addresses or address groups.",
      "items": {
        "type": "string"
      }
    },
    "source_user": {
      "type": "array",
      "description": "Source users or user groups.",
      "items": {
        "type": "string"
      }
    },
    "application": {
      "type": "array",
      "description": "Applications to match (e.g., ssl, web-browsing).",
      "items": {
        "type": "string"
      }
    },
    "service": {
      "type": "array",
      "description": "Service objects or application-default.",
      "items": {
        "type": "string"
      }
    },
    "category": {
      "type": "array",
      "description": "URL categories to match.",
      "items": {
        "type": "string"
      }
    },
    "action": {
      "type": "string",
      "enum": [
        "allow",
        "deny",
        "drop",
        "reset-client",
        "reset-server",
        "reset-both"
      ]
    },
    "log_setting": {
      "type": "string",
      "description": "Log forwarding profile name."
    },
    "profile_setting": {
      "type": "object",
      "properties": {
        "group": {
          "type": "array",
          "items": {
            "type": "string"
          }
        }
      }
    },
    "disabled": {
      "type": "boolean",
      "default": false
    },
    "description": {
      "type": "string"
    },
    "tag": {
      "type": "array",
      "items": {
        "type": "string"
      }
    }
  }
}