Create an Address List
Create a list of IPv4, IPv6 or FQDN addresses you can use to build rules in a firewall policy.
You can specify individual IPv4 or IPv6 IP addresses, or use CIDR blocks in an IP address list. Each address is entered on its own line within the list.
FQDN addresses are only available for specific use cases. To use FQDN addresses for address lists, Create a service request.
Each address list can contain a maximum of 1,000 addresses. You can create a maximum of 20,000 IP address lists and 2,000 FQDN address lists in a policy.
To import multiple address lists using a .json
file, see Bulk Import Firewall Policy Components.
Some names are reserved by Palo Alto Networks® and can't be used.
- Select the policy.
- Under Policy resources, select Address lists.
- Select Create address list.
- Enter a name.
- Select an Address type. An IP address list can use IPv4 or IPv6 addresses or CIDR blocks. An FQDN uses fully-qualified domain name (FQDN) addresses. You can't mix IP addresses and FQDN addresses in the same list.
- Enter a maximum of 1,000 addresses, one on each line.
- Select Create address list.
Use the network-firewall address-list create command and required parameters to create an address list:
oci network-firewall address-list create --network-firewall-policy-id network firewall policy OCID --compartment-id compartment OCID --total-addresses integer --addresses '["address_1", "address_2"]' [OPTIONS]
For a complete list of parameters and values for CLI commands, see the CLI Command Reference.
Run the CreateAddressList operation to create an address list.