When configuring ldap auth, what is 'tsl' ?

If tsl is a typo for tls, when I tcpdump the connection I don't see any attempts to start TLS.

Expedition Fusion remote exception

Does anyone have an idea as to why I get a "remote exception" error when running Expedition on Fusion?

I also noticed the Jobs and Task Manager won't start.

Thanks,

Jonathan

Static Route Import 1.0.106

Static routes appear to not be able to be imported into CSV when using 1.0.106. Would someone please try and let me know if successful?

Dynamic NAT and Interface Dynamic NAT ASA Pre8.3

I have discovered that importing a Pre8.3 Config that has an interface dyanmic NAT (DNAT/PAT) causes the DNAT to be not an interface nat but a Translated Address NAT. I also made an earlier post on how these appear in the wrong order of operations (a

Expedition Updates with SSL Inspection

I ran into issues updating Expedition through my PAN Firewall running SSL decryption.

After a bit of troubleshooting there are two changes I needed to make on the expedition VM.

1.  Update cert file with your SSL Decrypt cert - This allows apt to tr

PALogs sub-dirs

Does Expedition actively use the following PALogs subdirs, or can I clean these out?

connections.parquet

sparkLocalDir

spark-warehouse

Basically, I am asking because I have a limited ammount of space and LOTS of logs being sent to the PALogs dir,

Migration from pa500 to pa820

I am planning on using the migration tool to conver the config from pa500.

To do this once I get the same firmware on both the boxed do I also have to import the base config from the pa820 to the migration tool?

I also read somewhere something ab

Invalid Name not functional and Odd Search Behavior

I have several invalid address objects that were migrated with a name #.#.#.#/# and i want to replace the '/' with a '-' so that the name is valid, but the replace option is not functioning. The method was to right click and select predefined filters

Two ASA pre 8.3 Problems

I have run into two ASA pre 8.3 Problems.

1) importing a deny security rule that had a destination port of 445, was changed to be all tcp ports ( that would be a small problem =D)

2) Importing routes pointed to the inside with a vpn on the outside th

Error during upgrade

I'm currently running 1.104 and tried the upgrde process as I always do before using Expedition.  As of yesterday I recieve the following error:

Any help would be appreicated.

Expedition Inconcistencies

I'm importing my projects in both MT3.3 and Expedition 1.0.105.

Q?  Why does MT3 import service objects using "_" underscore vs. Expedtion which uses "-" hyphens?

Q?  Why does my services use underscores in Expedtion, yet, the objects in the serv

Warning usernames and passwords stored in clear text of the apache logs when testing with ldap

Warning if you use the test button next to an ldap server the userid and password are stored in clear text in /var/log/apache2/access.log since they are passed in the URL. 

Example:

<IP> - - [19/Sep/2018:14:28:22 -0500] "GET /bin/authentication/ser