Enhance your Ollama deployment with enterprise-grade AI security using Palo Alto Networks AI Runtime Security.
panw-api-ollama is a security proxy that sits between your OpenWebUI interface and Ollama instance. It works by intercepting all prompts and responses, analyzing them with Palo Alto Networks' AI RUNTIME security technology, and protecting your system from:
- Prompt injection attacks
- Data exfiltration attempts
- Harmful or toxic content
- Personally identifiable information (PII) leakage
- Other AI-specific security threats
The best part? It's completely transparent to your existing setup - Ollama will still work just as before, but with an added layer of security.
- Prevent Security Incidents: Detect and block malicious prompts before they reach your LLM
- Protect Sensitive Data: Ensure responses don't contain unauthorized information
- Maintain Compliance: Implement guardrails for safe AI usage in enterprise environments
- Visibility: Gain insights into usage patterns and potential threats
- Secure AI models in production: Validate prompt requests and responses to protect deployed AI models.
- Detect data poisoning: Identify contaminated training data before fine-tuning.
- Protect adversarial input: Safeguard AI agents from malicious inputs and outputs while maintaining workflow flexibility.
- Prevent sensitive data leakage: Use API-based threat detection to block sensitive data leaks during AI interactions.
For Docker-based deployment, please refer to the instructions in the Docker Setup README.
The Docker setup provides a complete stack with Ollama, panw-api-ollama, and OpenWebUI in a pre-configured environment.
git clone https://github.com/lenoxys/panw-api-ollama.git
cd panw-api-ollama
cargo build --release
Follow this tutorial, specifically step 13, to obtain your API key.
Rename config.yaml.example to config.yaml and update it with your API key:
cp config.yaml.example config.yaml
Then edit the file to add your Palo Alto Networks API key:
pan_api:
key: "your-pan-api-key-here"For non-Docker installations, you need to change the Ollama port in OpenWebUI from 11434 to 11435:
- Go to Settings > Server Management in the OpenWebUI interface
- Add a new Ollama server with URL:
http://localhost:11435 - Save your configuration
Alternatively, update your OpenWebUI environment settings: OpenWebUI Environment Configuration
Before using the service, make sure you have a model available:
ollama pull llama2-uncensored:latest./target/release/panw-api-ollamaYou're all set! You can now use OpenWebUI as normal, but with enterprise security scanning all interactions.
The project includes example configuration files in the config-examples directory that demonstrate different setup options:
The config-1747909231428.json file shows how to set up OpenWebUI with both secured and unsecured Ollama connections:
{
"ollama": {
"enable": true,
"base_urls": [
"http://panw-api-ollama:11435", // Secure connection through panw-api-ollama
"http://host.docker.internal:11434" // Direct connection to Ollama
],
"api_configs": {
"0": {
"enable": true,
"tags": [],
"prefix_id": "PANW", // Models with this prefix use the security proxy
"model_ids": [
"llama2-uncensored:latest"
],
"key": ""
},
"1": {
"enable": true,
"tags": [],
"prefix_id": "NOPAWN", // Models with this prefix bypass the security proxy
"model_ids": [
"nomic-embed-text:latest",
"llama2-uncensored:latest"
],
"key": ""
}
}
}
}Two example model configurations are included to demonstrate before/after comparisons:
PANW.llama2-uncensored_latest-1747909321539.json- A model using the security proxyNOPAWN.llama2-uncensored_latest-1747909327080.json- The same model bypassing the security proxy
These configurations allow you to perform side-by-side comparisons and demonstrations of how the Palo Alto Networks AI Runtime Security affects the model responses.
For issues related to this integration, please file an issue on GitHub. For questions about Palo Alto Networks AI Runtime Security, please refer to official support channels.