Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
ML and RE discovery stuck at Initializing... when i set new base config To reproduce 1) Update config at Device 2) Import into project 3) Set new base config 4) Start ML or RE discovery for any rule Everything works well if you create new project(workaround)
We recently upgraded to the latest version of Expedition v1.1.14 and there appears to be a bug in the merge/consolidation of service objects. It doesn't matter what we are searching and analyzing - the found results are attempted to be merged and everytime, on every project, we are getting an immediate 'error' - with no additional detail. Oddl...
When I am importing the XML from Expedition it has started to give me errors due to a tag that is present on merged objects. The tag is 'merged' and you can see it in Panorama in the tag column but when you open the object nothing is in that field. Determined that all I have to do is open the open and save it but this is a real pain with the num...
I am migrating from a Clavister firewall. Configuration is in XML format, which I am converting to CSV. Everything but NAT works OK, but I have not been able to find a description of how to format the fields for TP to get the desired result. Can anyone enlighten me on how the parser interprets those fields? Most pressing right now is how ...
What servers or their URLs are required by expedition apt-get. We've whitelisted *.paloaltonetworks.com. We're asking because we se following: Install these packages without verification? [y/N] y Get:1 https://conversionupdates.paloaltonetworks.com expedition-updates/ expedition-beta 1.1.17 [40.7 MB] Fetched 40.7 MB in 5s (7,139 kB/s) ...
I am trying to do a ‘load config partial mode append’ to get the policy exported from Expedition into a device-group that already has policy/nat rules (those rules are from a previous Expedition project, and we are trying to combine 2 ASA contexts into 1 PA firewall). Normally I do a ‘merge’ instead of an ‘append,’ but the rules/nat’s are mergin...
I am running Expedition 1.0.106 and have a question about merging rules. Once the analysis is done I am presented with cases that I look at individually. From there I can merge by highlighting the rules or by clicking on the 'merge by selection or all results'. Either one of those ways works to merge a case. The question I have is the part that...
I have a weird issue when I import the XLM into the firewalls and wanted to see if anyone has any thoughts on it. I am importing the interface configurations from Cisco ASA's into templates in Panorama that were migration in Expedition. The import into the template and the commit to Panorama works just fine but when I push to the firewall I keep...
I am trying to combine 2 ASA contexts into a single PA config. Used Expedition to do the migration separately for each context and everything but the rules worked as expected. Normally I use 'load config partial mode merge' which also worked in this case for everything but rules. Not sure what the trigger is to merge rules but it did indeed merg...
Say that i have imported a big ruleset (from junos), i have to split this ruleset i to multiple firewall (due to redisign)Is there any way to export part of the ruleset (maybe be search The part i want)
When importing panorama we have two fqdn address objects that are detected as invalid: EXT-SaS-Monitoring_02ws.centrastage.net fqdn 02ws.centrastage.net EXT-SaS-Monitoring_02cc.centrastage.net fqdn 02cc.centrastage.net All objects with a number as the first character of the fqdn are detected as "invalid" objects. Unable to use auto update fe...
Just an fyi when we loaded a junos SRX config 12.3X48-D40.5 it was only able to pull the services. On MT3 it pulled address objects, services, address groups, service groups, security rules , security zones and interfaces.
Hi! I'm running Expedition 1.1.18, and using CSV import to get data from a Clavister FW. CSV was generated by a python script I wrote. The CSV I'm generating has data for the 'tag' field, but on import it looks like the mapping is lost. The tags are created! But they are no longer applied to the objects (addresses) from which they were l...
Hi, I assume this question has been previously discussed, however I wasn't able to find a thread that describes the process. I am looking to import an .xml file from a palo alto firewall and use expedition to convert the config into a device group and template within panorama. Can someone share the steps needed to acheive this?
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
