Export via API not allowing Security Profile Groups to be deleted in Pano

I am using Expedition 1.1.80 to make bulk changes to Security Profile Groups that are used on rules. Once the changes are made I am using the API Output Manager to push the changes back to Panorama. Once this is done and I am sure the old security pr

Expedition Migration-Invalid Address Group

Hello,

I am currently migrating my ASA 5585 to a Palo 3260. Everything on the dashboard has been rectified, except for one address group that shows "invalid". I'm not sure how to correct this, it appears to hit two rules, but I'm not sure what the

Forward logs from Firewall to Expedition for ML but storage always full

Hi All,

I tried to forward traffic logs from firewalls to the expedition for machine learning purposes, however, those traffic logs always occupied the storage and cause my expedition always unable to login with the WebUI. After I free up some storag

Expedition installation script gives root a simple password, SSH login

I'm evaluating Expedition to assist with an internal project, and while reviewing the installation script, I noticed a couple massive red flags.

First, the root account is given a hard-coded, easy to guess password: 'paloalto'.  This is done for bo

Authentication Policy Cisco ASA to Palo Migration

Hi All, 

I'm just looking for some help in migrating an authentication policy for my customer. I have tried to do this in expedition but I'm not sure it works. The Cisco ASA config I am trying to migrate is decribed below:

/

aaa-server RadiusProfil

Fortigate 5.6.X migration -> QoS policies and DSCP marking missing

Hi Community,

Currently working on a Forti to Palo migration. To my surprise, after uploading the current Forti´s configuration to the Migration tool, I noticed that the QoS polices had not been converterd//were missing. Also, the Forti, within the

Multiple Issues, ran out of space

We filled up the drive by doing scheduled log exports, we then added a new disk and moved log exports to it, the only thing I had to fix was PanReadOrders was showing as stopped and when we tried to start it, it would just stop again. So I found an a

Way to forward logs from individual rules instead of entire firewall?

Is there a way to forward logs from individual rules by adding Expedition to their Log Forwarding Profile rather than setting up a Scheduled Log Export which forwards an entire firewall's logs?

Reason I ask is I need to use MI to analyze traffic fo

Policy list showing blank after uploading all the check point files

I am having issue with upload the config files to Expedition with valid checkpoint files
We have been facing issue to upload the config files to Expedition with valid checkpoint files
Checkpoint version is 77.30
Expedition version- 1.1.80 amd64
After upl

Expedition migrated ASA configuration is giving "Configuration is invalid" error on validation

Hi Experts,

I have merged 9 different ASA firewall/contexts to create 3 Vsys on Paloalto 5220.

Till 2 vsys migration worked fine and configuration was ready to get pushed with few warnings as validation said "configuration is valid"

Now after migrating

Expedition Migration Logs

Hello everyone,

I am new to using Expedition and have a question regarding the Migration Logs (generated automatically by Expedition), upon analyzing the imported running-config from my cisco asa, Under Task: NAT Analysis - Under Action - it saying N

Epxpedition for Red Hat

Hi folks. Does anyone know, by when Expedition will be available for Red Hat Linux?