M. Learning Traffic Analysis appears to be picking up traffic that contradicts the rule.

I've successfully setup Expedition to consume logs and provide M. Learning traffic analysis for any any rules.

I've done 6 any any rules so far and all but one look correct.

The following any any rule has a source zone of Trans100_inside and destin

expedition first time use - Remediation help needed

In a new installation of Expedition upon first login we had three issues to remediate:

1. The instructions for "Verify that the SQL_Log_bin flag in MariaDB is set to off" were clear enough.  So that was addressed successfully.

2. Insufficient ins

Unable to retrieve running configuration

I cannot retrive running configuration from Expedition through Devices menu. After click "Retrieve Contents" and select "running configuration", I can see running configuration is downloading but there's running configuration as a result. Even manual

Issues configuring M. Learning while using Panorama for traffic analysis

Hello,

I'm trying to configure M. Learning in Expedition so that we can analyze the traffic passing through specific any any rules. 

We use Panorama to manage the security policy on each of the individual firewalls. Is this an issue when trying to

How to upgrade Expedition offline

Hi community, you can follow the steps in the attached guide to apply upgrades to Expedition when your Expedition server does not have internet access.

To update the Best Practices  packages run the below command:

$sudo bash /var/www/html/OS/BPA/

Expedition - Import Checkpoint R80 Error: Not a valid CSRF token in the POST

Zero experience with Checkpoint, hostile Checkpoint admin that really doesn't want to help. Admin has provided the first tranche (400 lines) of security policy, following KB on exporting R80 security policies, he doesn't want to do all of it until he

Latest expedition migration tool version

Hi,

Anybody knows what is the latest version of expedition available? And does it support PAN-OS version 9.x?

Migration from Huawei to Palo Alto

Hi Team, could you please tell us is there a way to perform migration from Huawei to 5250 Palo Alto. we are aware that the migration tool would not support from Huawei to Palo Alto. Is there any scripting or other automated way available

Objects still in source config after merge

Hi,

I'm working on a migration from Checkpoint R80.20 to panOS 9.0.5.

I injected both configurations in expedition. When I merge Policies and objects with the base configuration, the operation seems successful because I have the "Done!" message.

Bu

Expedition tool project - machine learning policies tune up

Hi,

i have done with setup machine learning

it analysed 1 firewall's 1 day log and populated 2080 policies

and 13518, still i have to analyze the logs for 29 days

I am afraid how i am going to optimize my newly populated firewall rules and how i

Export policy to CSV with object name to IP resolved?

Is there a way to export a policy to CSV while resolving the Object Names to IP?  I know you can export policy, addresses, and addresses groups individually.  I would like one worksheet that contains the policy with both object name and IP in the SRC

Will expedition v1.1.10 support converting ASA v9.6(4)34 to Palo v9.0.6