Create an Address List

Create a list of IPv4, IPv6 or FQDN addresses you can use to build rules in a firewall policy.

You can specify individual IPv4 or IPv6 IP addresses, or use CIDR blocks in an IP address list. Each address is entered on its own line within the list.

Note

FQDN  addresses are only available for specific use cases. To use FQDN addresses for address lists, Create a service request.

Each address list can contain a maximum of 1,000 addresses. You can create a maximum of 20,000 IP address lists and 2,000 FQDN address lists in a policy.

To import multiple address lists using a .json file, see Bulk Import Firewall Policy Components.

Important

Some names are reserved by Palo Alto Networks®. If you create a policy component with a reserved name, the process fails with an error. See Reserved Names.
    1. On the navigation menu, click Identity & Security. Under Firewalls, click Network Firewall Policies.
    2. Click the policy.
    3. Under Policy resources, click Address lists.
    4. Click Create address list.
    5. Enter a name for the address list. Avoid entering confidential information.
    6. Choose an Address type. An IP address list can use IPv4 or IPv6 addresses or CIDR blocks. An FQDN uses fully-qualified domain name (FQDN) addresses. You can't mix IP addresses and FQDN addresses in the same list.
    7. Enter a maximum of 1,000 addresses, one on each line.
    8. Click Create address list.
  • Use the network-firewall address-list create command and required parameters to create an address list:

    oci network-firewall address-list create 
    --network-firewall-policy-id network firewall policy OCID --compartment-id compartment OCID
    --total-addresses integer --addresses '["address_1", "address_2"]' [OPTIONS]

    For a complete list of parameters and values for CLI commands, see the CLI Command Reference.

  • Run the CreateAddressList operation to create an address list.