Network Configuration Objects

Overview

This section covers the configuration of network features provided by the Palo Alto Networks Strata Cloud Manager SDK. Each configuration object corresponds to a resource in the Strata Cloud Manager and provides methods for CRUD (Create, Read, Update, Delete) operations.

Available Network Objects

IKE Crypto Profiles - Configure Internet Key Exchange crypto profiles for VPN tunnels
IKE Gateways - Configure Internet Key Exchange gateways for VPN tunnel endpoints
IPsec Crypto Profiles - Configure IPsec crypto profiles for VPN tunnels
NAT Rules - Configure Network Address Translation rules for traffic handling
Security Zones - Configure Security Zones for network segmentation

Common Features

All network configuration objects provide standard operations:

Create new network configurations
Read existing network objects
Update network properties
Delete network objects
List and filter network objects with pagination support

The network objects also enforce:

Container validation (folder/device/snippet)
Data validation with detailed error messages
Consistent API patterns across all network object types

Usage Example

from scm.client import ScmClient
# Initialize clientclient = ScmClient(
client_id="your_client_id",
client_secret="your_client_secret",
tsg_id="your_tsg_id"
)
# Create a NAT ruleclient.nat_rule.create({
"name": "outbound-nat",
"nat_type": "ipv4",
"source": ["10.0.0.0/24"],
"destination": ["any"],
"service": "any",
"source_translation": {
"dynamic_ip_and_port": {
"type": "dynamic_ip_and_port",
"translated_address": ["192.168.1.100"]
}
},
"folder": "NAT Rules"
})
# List NAT rulesnat_rules = client.nat_rule.list(folder="NAT Rules")
# Print the resultsfor rule in nat_rules:
print(f"NAT Rule: {rule.name}, Type: {rule.nat_type}")

Select an object from the list above to view detailed documentation, including methods, parameters, and examples.

Network Configuration Objects

Table of Contents

Overview

Available Network Objects

Common Features

Usage Example