Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
Hello All, We have done machine learning on a project which has two Imported base configuration from Panorama. We created learned policies in the Second Configuration File, however when we Generate the API request, it takes configuration from first Configuration by default. Is there a way I can choose the base configuration as second file fo...
Hello, I am working through a Checkpoint to Palo migration. The Checkpoint is a rather large configuration: 10k+ objects, 1700 rules, 1300 NAT policies, etc. Recently the Checkpoint Smart Console was upgraded from R80.20 to R80.40. While on R80.20 the zip file import into Expedition worked fine but since moving to R80.40 it no longer works. Si...
Hi, since using version 1.2.39 and probably also some earlier versions an import of a checkpoint config (<R80) does not deliver interfaces, zones and router info in the tool. I have tried with data from a previous project and same problem....how to fix ? Can I roll back the expedition version ? Regards
Hi, I have been using Expedition for several years now and i have deployed many instances however when trying to do this in the last few days i am unable to login to the web UI with the default credentials. I have built 2 new Ubuntu 20.04 vms and the install script completes without and errors. I have been following the guide (found here), t...
Hi Team, I am trying to export the tunnel information like ipsec_crypto, IKE gateway and IKE crypto. But challenge is we have more then 650 tunnel and we are not getting all the information in single file to compare and for pre-check before the audit. Regards, Chander Jain
Hello, Generate API Requests stuck at step "Generating Management Interface". Waiting already more than 2 hours. What does this step means and why it might took that much time? Configuration was taken from Check point firewall and at the end should be pushed to Panorama using API. Panorama ver. 10.2.2-h2 Expedition ver. 1.1.91.1
FortiWAF - FVAWS1 - 1.4 - Expedition Migration to Palo Alto - PA-VM - 10.2.2.2-h1 I'm attempting to utilize the Palo Alto Expedition tool to import a Fortigate WAF FVAWS1 - 1.4 config into a Palo Alto. When running the import from the zip file and reviewing the objects > contents > Url-Filtering or any other items listed there, it's not ...
Hi Expedition Version: 1.2.38 I am trying to connect an expedition to Panorama 10.1.6h3 (VMware) When I try to add an API key using username/password I get "Error Code 35: The connection with the device cannot be established. Please, report Error Code for improvement" I generated an API key for the panorama so I tried that method by addi...
Hi, I am using expedition tool to migrate the configuration from Cisco FWSM to Panorama. While reading the documents for "Log forwarding to Panorama", i understand that we need to select a security rule and set the log forwarding profile in order to receive the logs in Panorama. I have thousands of security rules which are being migrated and h...
Hello Export firewall traffic logs and import them to expedition Does Expedition create security policies based on traffic logs?
Hi Team, I'm trying to deploy last version of expedion in esx-vmware environment. I deployed the Ubuntu Server ISO suggested but when we launch the script of installation we get stucked here: "Updating Python modules spawn bash /var/www/html/OS/BPA/updateBPA306.sh bash: /var/www/html/OS/BPA/updateBPA306.sh: No such file or directory Inst...
Is there any way to auto create policies from logs without the devices?
Is there a way to query the Expedition database from the cli using mysql tools? I'd like to run custom audit queries against an imported configuration and it seems like Expedition has done all the hard work of parsing the configs into structured data. Not looking for anything fancy - just read-only access to the database to run SQL queries.
Hi Version: 1.2.36 I have an issue when I try to select [Step 2] Send API Requests from Export - API Output Manager [Step 1] Generate API Requests completes correctly and populates. Once I select a setting I have changed and wish to push back to the Panorama I have loaded in the project I get this screen: I cannot then select opti...
Installed expedition per instructions, on log in getting error Remote Exception: Not a valid CSRF token
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
