Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
Upon login, the Expedition Dashboard shows Update Available to 1.2.49. However, when I try to update in APT, it shows the latest package is installed. How do I get Expedition GUI to see this is on the latest version? # sudo apt-get install expedition-betaReading package lists... DoneBuilding dependency treeReading state information... Doneexpe...
We are planning to migrate Cisco ASA firewalls to Palo Alto, as part of it we are converting the configurations using Expedition tool, but while i check on Network section for the firewall interface, i can see only port channel interfaces but not seeing the physical interfaces are part of that port-channel group. Do i need to manually create phy...
Hello, I have a fresh Ubuntu 20.04 server 64bit and after install the latest Expedition I'm getting "Incorrect user or password." Apache logs: root@expedition:~# tail -f /var/log/apache2/error.log [Wed Feb 01 11:27:14.078549 2023] [:error] [pid 4061] [client 192.168.56.1:53280] PHP Warning: mysqli::__construct(): (HY000/1698): Access denied ...
I have logged into this before using the default admin/paloalto account, but it is no longer working, and always says Incorrect User and Password. This is on many different browsers, and machines, so it's not browser related.I have ran the php /var/www/html/OS/startup/restore/restoreAdmin.php command on other posts, stating it restored the pass...
I created a Docker container for the Palo Alto Expedition tool as of version 1.1.38 and published it to Docker Hub. I rebuilt it on Alpine Linux and stripped the binaries, reducing the image size to a mere 1.43 GB. Optionally, you can make the database persistent by binding a directory on your host machine to /var/lib/mysql. Likewise you can bin...
I was trying to see the capabilities of the log retrieval using splunk, and I can retrieve about 115 lines of data from splunk, the splunk job is finished, and there is data being transferred back and forth that can be seen with tcpump, but after a set number of lines the job just sits there, and will never complete. there is adequate disk spa...
Hi all, I'm trying to set up Expedition as a Syslog server. I am following the guides, but a folder under /PALogs is never created with the management IP of firewall sending the logs. Any suggestions?
We have changed the admin password to something other than the default but now after a period of time we are getting "Incorrect User or Password" when trying to login via the GUI. A few times before this we getting logged in then kicked out immediately and I had to reboot the device to fix it. But now nothing seems to work. I can still login...
We have a complex environment with a physical ASA HA pair with multiple contexts, which we are slowing moving to Palo Alto VMs, one ASA context per VM HA pair. Some customers have existing PA VM pairs in addition to an ASA context. We have more than a dozen HA PA VM pairs (running 9.1.x) managed by Panorama (running 10.1.8). I have tried multi...
Hello Team, For my first post on the community ! For a customer case we want to use Expedition Palo in the aim to bulid security rules from permissive security rules. Indeed, with an additional file we have the best practices (from IT service directly) about security rules to implement its. In the past time we built our own application (based ...
So i have follwoed all the guides and posts i can find about changing the permissions and what not but i keep getting this error when i setup the scheduled log exports on one of my firewalls. Error response from server: bash: /PALogs/ssh-export-test.txt: Permission denied Ideas?
I wanted to share this experience and maybe see if this is a bug or simply a condition of how PAN works. I am migrating multiple ASA contexts into a multi-vsys PAN environment. I was doing a partial load config/xpath sequence from the CLI and I got errors on moving the vsys over. After much testing the solution was to make sure the name o...
Expedition has some security policies greyed out as disabled. I corrected the issues that gave Expedition concern and now I would like those rules enabled before I complete the export/merge XML file step. I have sifted through all of the menus and cannot find how to do this? Can it even be done or will I have to hunt the rule down in the firewal...
I am using expedition to export config from ASA to palo alto using expedition , After export - merge it just stucks at pending and does not create config xml file ? Any advise ?
Im using expedition tool for migrate Fortigate to Palo Alto, everything is seems ok, but when I try to merge and export config, status stuck pending.
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
