Anyone know server sizing requirements for this? Minimum cpu, memory and storage?
Also, what is the recommended way to install?
I started by running the command
scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csvon my PA220.
root@Expedition:/PALogs# ls -l
total 64296
-rw-rw-r-- 1 expe
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW):
https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c
Be sure to go Settings > M. Learning > and change the Expedition ML Addr
...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini
sudo vi /etc/php/7.0/apache2/php.ini go to line where this ...
I run the sudo apt-get update and I get the following errors
Get:1 http://security.ubuntu.com/ubuntu xenial-security/main amd64 git-man all 1:2.7.4-0ubuntu1.8 [737 kB]
Err:2 http://ppa.launchpad.net/jonathonf/python-3.6/ubuntu xenial/main amd64 pyth
I have imported the config of an existing 7080 (PANOS 8.1.13) into a new expedition project to see if i can analyze duplicate objects that can be potentially removed.
I'm not seeing what I expected though. In expedition there shows no Address Object
...
On Expedition there is a file size limit to import of 8meg ? My client has a Panorama config that is 12meg...
My expedition is running on version 1.1.66, but I do not have any Best Practices packages.
Executing sudo bash /var/www/html/OS/BPA/updateBPA306.sh produces a lot of warnings and errors:
expedition@expedition:~$ sudo bash /var/www/html/OS/BPA/updateB...
Just built a brand new VM running Ubuntu 16.04.6 with Expedition version 1.1.65, but I cannot login to the GUI using any credentials, including admin/paloalto or expedition/paloalto. Also, when looking at the /home/userSpace directory, the /utils sub
...
Hi,
In a somewhat unusual case I'm trying to use objects pushed through Panorama, in a policy in expedition. Both Panorama and the firewall are linked & imported in the expedition project.
Moving the firewall policy to an all Panorama policy isn't
...
Hi all,
my expedition version is 1.1.7. The dashboard says that /boot is running out of space and suggests to do "sudo apt-get autoremove -f". Unfortunately, this is not working:
expedition@expedition:~$ df -h
Dears ,
what is the user name and password used to access the server and the GUI ?
Hi guys,
I'm using the FW-logs in order to transform the security policies from legacy services towards app-id.
ML logs are onto the system etc.
Analysing rules via: R-click / App-id adoption / retrieve app (slow-fast) works fine.
Fi. Apps Splunk, ms
...
This is more of an Ubuntu question but I'm hoping others will find it helpful. Our VM admins expanded the available disk, but restarting the system doesn't cause it to automatically use it. What do I need to do? Googling for it gave me too many an
...
Hello,
When I import a Panorama Configuration and check the FQDN objects I can see that some objects have a CIDR 16 or 26 or 24 etc..
In the GUI it shows
Example
Name www.google.de
IP Address www.goolge.de
CIDR 16
FQDN is empty
V4 1
If I obe
...
Hi folks, We planned to migrate our FW P3050 to P3220.
Are they compatible or must we do a migration?
If they are no compatible is it possible to use Expedition to achieve this?
Many Thanks.
I am running rule enrichment on different device groups part of the same panorama that has been imported into the project. After I select the rules I want and hit the analyse button I see the results on screen and I then export to Excel. After doing
...
Hi All,
Hoping to use Expedition to clean up an ASA config without migrating to Palo. Understand it's not the intended purpose but wondering if the imported ASA config can be cleaned up and extracted somehow, perhaps as a raw file?
I can see Projec
...
I've successfully setup Expedition to consume logs and provide M. Learning traffic analysis for any any rules.
I've done 6 any any rules so far and all but one look correct.
The following any any rule has a source zone of Trans100_inside and destin
...
