Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
I decided to start over after running into some self inflicted issues. I downloaded the OVA provided by bartc88, upgraded it, remarked out the bind address in my.cnf, and rebooted. Dashboard is green. I configured all of my Panoramas and imported the devices. I processed the 3-4 days worth of log files that accumulated into parquet. I cre...
When I am tcpdumping the connecting to an ldap server I can't see any differences between these two options from a quick look at the packet captures. What is the difference?
Hi Guys I have imported a ASA config to Expedition, I can see that it did import the Adress, Services, Address Groups and Service Groups but nothing els. VPN, Interfaces, Rules and all other tabs are empty. Cisco ASA Version 9.4(1). Any ideas
How do I fine tune Expedition to clear up all the red X's that appear in the main entry page? Thanks in advance,Bob
I've taken a PA220 and collected logs via a SPAN port to help in identifying traffic for creating a config. These logs have been exported and imported into Expedition, but I cannot get the device to process them. I have followed all the steps in the previous post about this and have increased my resources to 4 vCPUs and 16GB of RAM to process tw...
Hi Expedition team Recently I had a project, which required changing a number of physical firewall interfaces to a single aggregated tagged sub-interfaces ( e.g. ethernet1/1,1/2, 1/3, etc. changed to ae1.1, 1.2, 1.3). I decided to use Expedition “interface re-mapping” option. To start with I don’t seem to be able to directly rename Ethernet inte...
Hi there, I'm trying to use Expedition against a VM-Panorama (running v8.1.2). Only one Panorama, no other devices. A few weeks ago it was working fine but now when I use it I get the Loading spinner for a while followed by a rather informative error shown below. This occurs when I click away from the Devices tab and then back to it. I ...
Has anyone got the Machine Learning to create new Security Policies from Tap Mode to work?
Hi, Is there a limitation of 99 security rules (policies) on Expedition? My FW has about 110 policies and when I retrieve the config and import device to the project in Expedition, it only sees 99 policies. Thanks, Nikhil
Is it possible to auto start the PanOrders Agent on boot?
Getting the following error when trying to process CSV: Exception: Caused by: java.lang.NumberFormatException: For input string: "2001:470:ba7e:20::254"at java.lang.NumberFormatException.forInputString(NumberFormatException.java:65) Full trace: (/opt/Spark/spark/bin/spark-submit --class com.paloaltonetworks.tbd.LogCollectorCompacter --d...
I have already went ahead and exported the log from my Palo which is currently in TAP mode.
Are there any changes to the supported objects in Expedition versus the old migration tool? I am specifically looking for application aware rules to be migrated to App ID from Checkpoint, Fortinet and Cisco. Thanks!
Hi All, May I know for the BPA feature in Expedition, is there a minimum PANOS version being supported? Thanks
With the finite ammount of disk space, etc on a VM, how do you go about clearing the database of data that you no longer need?
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
