Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
Hi all, Migrating from ASA to PA at a major data centre. We have migrated many sites but only ones with static routes so far. The datacentre we are migrating has 100+ static routes and some OSPF routing configuration as well. I noticed it seems the static routes were migrated fine (as expected from the experience at other locations) but the OS...
Install details below, but I haven't used my Expedition install in a while and I went to start another migration, but the Panorama user I was using wasn't working. The account locked so I just changed the password to avoid any issues there (new password meets all complexity requirements as defined in Panorama | Setup | Management tab). When I...
Can Expedition be used to migrate FROM PA firewall to Cisco FTD?
Upgraded Expedition and now the ' Export / Generate XML and Set Output ' produces a blank (zero byte) MT-project-set.txt file. Did I miss something in the release notes that this feature is no longer supported ? I require it for some of my post processing steps.
I have configured a new instance of Expedition as our previous VM was not able to contact the internet to obtain updates (and there is no offline updater that works for ML). After upgrading to the latest release (1.1.108), I am trying to complete the Spark Temp Data Structure path in the settings section, however the information is never saved...
Hello community, My question is simple, what is the procees to remove or delete a PANOS base config? For example, I upload one xml base config, but in a couple of days I check and prefer upload another base config maybe because I added one configuration that I needed. What is the process to remove the most older?. Thanks.
Hi ! I just installed a fresh new Expedition server running on Ubuntu 20. Everything is working fine except the Radius authentication for the admin users. I ran a tcpdump on the server and could notice no traffic is actually leaving the server to my Radius server. I also checked the apache log and found the following error : PHP Fatal error:...
During a config migration some objects are placed in shared but I need them in the DG. I don't see a way to move them from shared to the DG. Is this possible? Thank you
So I have a project. Basically I imported a Check Point config, edited it, then merged with our Panorama config. In the Panorama config I am preparing template and device group for the new config, and I merged the edited Check Point config into those. After that I cleaned for duplicates and so on. The end configuration of the new device group an...
I have firewalls managed by Panorama that I want to do some ML and RE on traffic logs. Right now I have this setup for 2 firewalls using the log export feature on the firewalls. Each firewall exports traffic logs to a different folder on my Expedition server. In Expedition I have added my Panorama and from the devices tab, I show all devices to ...
Hi All, I was wondering if deleting objects and security rule is possible? I imported my ASA configs into Expedition and is able to see my ASA config. When i go to my objects they all show up. so I click on one of the objects to delete them using the minus button on the top left hand corner and all i get is the screen flash but the object...
Hello all, I was working on an Expedition project on v1.1.105, and the filter no longer works. I can create new filters, but when I drag them to apply the filter disappears and does not apply. I also cannot search & replace or anything that relies on the filter. Hoping this can get fixed and not a corrupted project. Any thoughts? I w...
Hello, Trying to merge a Palo Alto 9.0.4 configuration into Panorama 9.0.4, I'm able to merge but when I click the "generate XML and Set Output" button it hangs at either "Generating Monitor" or "Initializing" Panreadorders log looks like it just exits without an error message: Checking: AbstractProcessTue, 18 Feb 2020 13:10:18 -0800 Start T...
Hello there, I imported the configuration of a PA-5050 to Expedition to make some changes till a new PA-3260 arrived to the office. I did the changes, and imported a new base config of the PA-3260. I migrated all network and device objects (policies, IPSec VPN, etc.) to the base config (PA-3260) and merged it "successfully". However, when hit...
I am trying to do some rule enhancement on stuff that is in Prisma. I know that Prisma can export filtered syslogs and Expedition can consume those logs, but the last mile isn't as clear. I want to plug in these logs for machine learning purposes- but I can only do so if I can first import Prisma device groups/rules into an Expedition Project, w...
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
