Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
I'm trying to block unauthorize devices (non-domain machine and not having our approved anti-virus install) to establish a client VPN session into our network via GlobalProtect. The only way right now is to apply HIP check once a VPN connection via GlobalProtect has established to the user traffic. What we see happening with doing HIP check on a...
PA-2050 not booting
I stumbled across two potential bugs in Expedition 1.0.107 the other day, using it to merge duplicates and unused objects from a Panorama (8.1.5) config. 1. Editing a config that originally contained over 10,000 objects (across different DGs) resulted in some shared objects being defined twice - this was after merging duplicate and removing un...
Looking to move addresses, address groups, services and service groups from a FGT1000C to a Palo 3060 and then build the policy in Palo manually. I've backed up the FGT config and created a new project in Expedition and was able to import it successfully. The current User Guide is a bit confusing. I'm new to Palo and was wondering if anyone h...
1- Rules from Application Blade are coming disabled (Not an issue, just needed to know why) 2- Interfaces are coming without an IP Address (Just network address) 3- OSPF routing are being loaded onto migration as fi they were static routes. 4- Some firewalls are not being loaded as 5- One firewall all services = NULL 6- Same Firewall as 5, just ...
Hi, I am upgrading from 3050 appliance to 3220, devices are in HA. is there any migration tool available in PA? Please advice me the upgrade path. Regards Zahid
Hey All, had an issue today while migrating apps from 7050 config to pa220R (bloody slow device) with 8.1.5 on board. on 7050 I have few vsyse's with shared applications and application-groups used (to share them in ruleset between vsyses). New PA-220R are installed in network to has one of vsyses config on it. So, after merging config in Expe...
Scenario: Two RADIUS servers added, tested fine. They were both added by user "admin". Added a new user with Admin role. new user logs in fine, goes to add other users (because hes an admin), he can add a user, but not specify a RADIUS server for user#2, because he doesnt see them listed.
Hi, all. I'm trying to use Expedition for the first time and it won't let me upload a config from a FortiGate. It's showing me the following error: Thoughts? EDIT: I was able to load this config file into the old MT 3.3.10 and it read it completely 😞 Any help?
Hello, after making sure the IPv6 config part is completed correctly and the ping6 is functional I add a new IPv6 Panorama device to Expedition (currently running version 1.1.2).As soon as I complete the API key details and click on Add I get following error: Regards, Pascal
I have tried Starting and Restarting from the GUI ,same result. I have exited the program restarted Expedition multiple times . It stopped two days ago and won't restart.
Greetings all. I have an issue with Expedition that I can't figure out. I imported the .XML from our PA-5220 and the config from our Cisco ASA and merged them. While verifying the resultant configuration in Expedition I noticed that there was nothing showing for our GlobalProtect remote access configuration. Nor was there anything in the GUI ev...
Greetings, I'm trying to test the ML part of the tool and PanOrder Agent keeps falling on it's face... i've updated the linux, expedition-beta packages and tweaked the php https://live.paloaltonetworks.com/t5/Expedition-Articles/Modifying-mysqli-reconnect-value/ta-p/219223 Seeing this in log file I'd appreciate the pointer for this agent lo...
Hello everyone, I have a question regarding the "AppID override" , In this article "https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000ClVLCA0" we can read the following: "Special Note about Content and Threat inspectionApplication Override to a custom application will force the firewall to bypass Content and Threat inspec...
Hi, I am preparing to migrate configuration from cisco FWSM to Palo Alto 5250 which is managed by Panorama. The converted configuration gets exported to Panorama but while attempting to commit to the firewall, i get the following error. I have done "re-mapping" of Vlan interfaces in Cisco FWSM to Palo Alto aggregate interface sub-interfaces. ...
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
