Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
Hi, I am relatively new to Expedition. I am in the process of migrating a load of Cisco configs to Palo, and an using Expedition. The Expo is not able to connect to the actual Palo/Panorama due to security, so I am doing this conversion in AWS, and then manually loading the config via a config partial push. When I create a new project and bring ...
Expedition v2 says that it supports Sonicwall migrations, but when I launch a new project, Sonicwall isn't an option to import. I have updated to the latest version using apt-get. Is this a known issue/gap between the documentation and the current version, or am I missing something?
Hi everybody, im facing big issue with expedition, everytime i drag & drop. Interfaces, Vr and Zones appears in the other side when i drag and drop but not the policies securities/Addresses/Objects.They are no more on Configuration Side but do not appears in Base Configuration. After the Merge option, nothing is in the XML file except ...
I have a link that I would like to move over to another PA. One of the most time consuming tasks is to move the security policies associated to this link from one PA to another. What I would like to do is to get all the security policies that have the word, "link1" in the source zone from one PA (5220), and moved over to another PA (7050). Is th...
I am doing ML in Expedition for the first time. The setup is, all FWs managed by single Panorama, logs forward from FWs to panorama. I have setup panorama collector to forward the firewall logs to Expedition via syslog. I have followed the online "Log Analysis Features of Expedition" and am getting stuck at Module 9 Machine learning. When I...
Hello, We are currently using Expedition 1.2.49 with a PanOS 11 Firewall and we are sending the logs to the Expedition Server via Syslog. After some initial hiccups with setting up the Firewall for Syslog recieving, which we solved ourselves by enabling syslog via iptables (this should be added to the LogAnalysisGuide): sudo iptables -I INPU...
Hi all I have what is hopefully a simple question. I have Expedition machine learning all set up and working. Yay Fire walls are set up to export logs daily to it and Expedition is set up to process and delete these logs daily automatically Since I'm getting logs daily can I rerun machine learning daily on either the same rules that I have s...
Currently running version 1.2.47 I have over 100 IPSec tunnels using DH Group 21 on a Cisco ASA. I am moving to a Palo 3430. The migration tool does not allow DH Group 21. However, PanOS version 10.2 added this DH Group. Can the migration tool be updated to accept this DH Group?
Hi Maybe is a cosmetic bug, but I uploaded my projects in this case CP to PA and works normally in the projects. But in the library does not show the number under CP column. Running expedition 1.2.48.
Hello Community, This is normal behavior when upload the CP config to expedition? In this case I only upload the CP config. Is pending the PA base.
Hi All, I would like to confirm if it is just my installation but it would appear that Expedition 1.1.98 does not have the option of importing a M600 device. There is only the option for m100 and m500. When attempting to use an m500 I get an `Exception Error` when adding credentials. M
Hello community, I'm working in one migration from CP to PA. I found one CP have multiple domain (virtual systems) exactly 3. So where extract the configuration I have 4 tar.gz files (3 virtual system and 1 management) and 4 routes files (3 virtual system and 1 management). My question, I need to upload one by one and work in 4 different t...
Hello Community, In the next days I need to migrate somes Checkpoints FW running 80.40 to PANOS. Checking the documentation, Exist a new version of ShowPolicyPackage 2.1.0 releases 2 weeks ago. Question, can we use this new version or continue with 2.0.6?
Hi All, I have recently encountered a very strange issue in Expedition project when trying to make auto-zone assign. Quick background:- In expedition project I have a config migrated from checkpoint- we have around 15 direcly connected interfaces - all with IP somewhere in the range from 10.3.64.0 to 10.3.128.255, and 1 uplink from another ...
Trying to migrate SRX 5800 ver 20.4R3-S3.4 cluster using Expedition. I have done quite a few SRX migrations but this one doesn't show any of the global routing instance information. Because of this there are tons of BGP and OSPF configuration that wont show up. Does anyone have any experience with this issue? Is there another way to bring the BG...
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
