Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
We have a healthy mix of VTI and Crypto Map tunnels on our firewalls and when checking the import, the policy maps are all there as expected (outside of the naming). However the VTIs only show up as tunnel interfaces with no IPSec tunnel or IKE Gateway association. Does Expedition support migrating VTI ipsec tunnels to the equivalent Palo conf...
Does anyone have any experience with recreating the output of the Security Policy filtering via the CLI of expedition? I have a quite large set of filter criteria (300+) that i am trying to filter across a Panorama with 30K rules. 300 filter elements not only would take forever to enter in to the Global Search, but would likely cause some othe...
HI I have installed the expedition tool in order to migrate a pa200 to pa220 but when i import the config to expedition tool i get an error message "Failed: Error occurred while unzip the file". I created a project and then tried to import config file. Any help would be greatly appreciated.
Export in base configuration output screen Device-Groups does not show arrows to expand organizational groups and sub groups when trying to import from Panorama 10.0. Currently running Ubuntu 16.04.6 and the Expedition shows 1.2.15. Does any know how to fix the device group not showing issue? Does Expedition work with an Intel CPU? This is...
Using ML function against a 640 rule rulebase, getting"no data to display". RE function displays data however ML does not; Looking for some ideas to troubleshoot this.
There is no 800 series option available. What gives? Running latest version of expedition - 1.2.15
Hello everybody, I've just installed and updated the Expedition VM and I'm trying to configure LDAP (Active Directory) authentication. It works fine when contacting the domain controller over port tcp/389 without SSL, but it doesn't work if I set SSL (and port tcp/636, of course). The domain controller uses a self signed certificate for the LD...
I'm trying to create a custom CSV to import a fairly large number of rules from a Barracuda firewall. There's over 30 rules that are blocking traffic that has any src as not the internal network. I'm following the CSV guide from here: https://live.paloaltonetworks.com/t5/expedition-discussions/csv-import-how-to-guide/m-p/259392 but there's no ...
When attempting to import an ASA config into expedition I receive the following error when reviewing the /tmp/error file. Notice: Undefined variable: description in /var/www/html/bin/configurations/parsers/Cisco/CISCOPHP Fatal error: Uncaught TypeError: Return value of PaloAltoNetworks\Policy\Objects\SecurityGroup::getTag() must be an instanc...
Hi! I have a new Expedition setup, running 1.2.13 on Ubuntu 20.04. Adding a FW device, setting up API keys and retreiving config works well. When I do the same for the Panorama (10.1.4.-h4 on M200) everything works the same, but the device is not recognised as being a panorama; the tab "PANORMA DEVICES" does not get activated. This is a ...
If a filter is applied to security rules and after merging some rules into one, the merged rule does not display until the filter is applied again. I have only seen this behavior when merging rules - maybe because the merged rule is a 'new' rule? @palo Alto Team: Could the filter be updated to refresh after a rule merge? Thank you
Hi there! New to Palo Alto and currently doing a migration piece for 4 types of firewalls. Barracuda, Fortigate, Chekcpoint and Azure. The team will be using Expedition tool to perform the migrations for Checkpoint and Fortigate, however I would like to ask people on this forum if my ideas are correct for Azure and Barracuda.. I have 3 opt...
I'd like to get some clarity on the learning results from ML function. I noticed that some "common" apps do not provide src and dst address - show as "any" while others "global" provide src and dst addresses. What is the criteria for presenting any in src or dst fields? Thanks for responding.
So i just brought up a new 18.04LTS server and installed the 2.0 beta. Love the new look! The issue I have is that i'm trying to work through my first project on it, importing a cisco asa config, and when i hit "Migrate" it seems to be stuck at around 20%. Is the cisco file supposed to be named a specific way, or as long as it's just a .txt ...
Hello! I recently rebuilt my Expedition Server on a new Ubuntu 20.04 with the new instruction. Couple of questions: The new installation guide recommends a 3 disk setup: Disk 1: OS (6GB) Disk 2: Data (150GB) Disk 3: PALogs (4TB) When installing in this manner you immediately get a warning in the Expedition GUI that the OS Drive where "/ho...
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
