Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
Hello, Does anyone know how to configure the Scheduled Log Export in a firewall to use the AWS ubuntu username and key pair? The Expedition-LogAnalysisGuide_v1.0.2.pdf document on page 7 states to use the "expedition" username and password on the Expedition server, but our Expedition server is in AWS and uses the username is ubuntu with a key...
I have had 1.0.105 installed for a while .. I know it has some inconsistencies and wondered if an update may fix these. But when I go to update tab it just tells me I need a FW rule. That's there, but how do I force an update? All I see in the FW log is blocked NTP requests ( It's trying the Canonical Default ) and some Snapcraft.io SSL req...
Doing my first migration to PAN-OS 9.0. We've migrated the config using expedition, but when I try to use the load config partial commands I keep getting a "Invalid syntax." error Example on how it used to work- load config partial from MT-fixed.xml from-xpath /config/devices/entry/vsys/entry/tag to-xpath /config/devices/entry/vsys/entry/t...
Hello,I was wondering if there is a way I could add a login banner to the web admin of expedition website. If there is one how can I do it.Thanks, Expedition VM 1.151version 3.6.3Ubuntu 16.04
The upgrade ran OK, but I think it required Python 3.7 to get the Best Practices upgraded and since it could not find the package, I belive it uninstalled that code. Is there a way to install the Best Practices code to match my Expedition version 1.1.52.1 ? Thanks in advance, Ashley Taylor
Hi, I have added a vm-series firewall to the devices and it can download some contents (application-container,applications,regions,and custom: configbackup.xml.dat,url_categories.xml) but configuration, licenses and system-info is not downloaded. No error appears when i retrieve the contents. When I go to the M.Learning tab the only traffic-lo...
We have Objects_5_0.C file from Checkpoint MDM and imported in migration tool but we get only shared address objects not context (Virtual Device) objects.The scenario is that MDM is managing 2 gateway and inside this gateway there are more then 6 context (Virtual Device).We want to replace checkpoint to Paloalto. Can you please guide how can i ...
Hello, I am trying to find out if there is any way to install Expedition on an actual supported OS. Ubuntu 16.04 went end of life in April 2019, I have tried installing Expedition on 18.04 which immediately failed, I have successfully installed on 16.04 then tried to upgrade to 18.04 which also failed due to dependencies with the Expedition ins...
Hello to all, @aestevez I dont see Sophos XG/UTM and sonicwall firewalls on the migration tool as a vendor to do migration. Is this on the roadmap? If yes, when it will be available? Thanks,
Hello, I have met an issue while I was migrating Panorama. On the Panorama, we see lots of service objects contains multiple ports which makes the content really long. After I import the configuration into the Expedition, the content are cut by the Expedition because it is unable to read the whole content. Is there anyway change the read...
Hi Guys, I'm experiencing a similar issue to the one reported in a previous post: https://live.paloaltonetworks.com/t5/Expedition-Discussions/Running-version-1-1-26-Merge-done-HUNG-at-Generating/m-p/276135#M1797 I'm importing data from Check Point to PAN. I've tried cleaning up unused applications but this didn't make the problem go away. ...
Hi MT gurus. I have installed Expedition, and I see a nice green message on my toolbar showing "Update Available" It seems like the tool wants to be upgraded to to 1.1.51 (but I installed in early December). It states to do an sudo apt-get update.. this is fine. Issue with with this line sudo apt-get install expedition-beta E: Unable to loc...
I have upgraded Expedition and am now getting an error under OS Settings stating 'Verify that the Log_bin flag in MariaDB is set to off". Where is the MariaDB located to edit?
Dear Palo Alto support team As I have post my question in the community, I come to conclusion that the Palo Alto firewall does not support the feature explained in the post--https://live.paloaltonetworks.com/t5/General-Topics/proxy-arp-pvlan/m-p/302528#M78834. The design case is used the the private vlan scenario where the upstream router/fire...
Hello Everyone, I'm new on this community and to PA products, I have worked with Cisco ASA5512 with Firepower services and I am working to replace it with PA-820 devices, I would like to get your advice since I have some questions: 1. The migration tool, is it useful or it will work on some of the configuration and other parts will require manua...
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
