palo-mcp
by jpitc-ca
Overview
Provides an AI agent with tools to manage Palo Alto Networks firewalls, specifically for creating, listing, updating, and deleting address objects and security policies, and executing operational commands.
Installation
docker-compose -f 003-n8n/docker-compose.yml up -dEnvironment Variables
- FIREWALL_IP
- FIREWALL_API_KEY
Security Notes
The server disables SSL certificate verification warnings (`urllib3.disable_warnings(urllib3.exceptions.InsecureRequestWarning)`), which makes connections vulnerable to man-in-the-middle attacks. This is a critical security risk for any deployment outside of a strictly controlled, trusted lab environment where self-signed certificates are explicitly managed. The server also requires a firewall API key with potentially broad administrative privileges, and exposes a tool to run arbitrary operational CLI commands, increasing the risk if the server or AI agent is compromised.
Similar Servers
project-nova
Manages Paperless-NGX documents by providing an MCP server that exposes an SSE endpoint for integration with n8n, enabling AI agents to search, upload, and manage documents, tags, correspondents, and document types.
git-netai
Provides a unified, asynchronous Model Context Protocol (MCP) server for managing multi-platform network infrastructure (routers, firewalls, WiFi, monitoring, data centers) via a single AI-accessible API.
wallguard
WallGuard is a centralized management system designed to monitor system state, network activity, and provide secure remote access for agents deployed on firewalls and other network-facing devices.
mcp-pihole
Connects AI assistants to Pi-hole to manage DNS blocking, view statistics, and control ad-blocking features via natural language.