Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
With the finite ammount of disk space, etc on a VM, how do you go about clearing the database of data that you no longer need?
How is the tool at migrating ACLs ? A lot of those practices are not in line with newer security policies and next generation principles. Is it useful to migrate the ACLs or start from scratch ?
Hi All, Please can someone help advise if migration of Cisco ASA version 8.2 NAT policies to Palo Alto is fully supported in the latest Expedition tool. Regards, PE
hey is there any plane to add migration of Web Proxy's policy such as McAfee Web Gateway, Symantec Web Proxy etc etc. thanks
I am running the Expedition Tool on our Cisco ASA firewalls and the tools is stating that most of our IP Address, IP Address Groups and Services are invalid. When I go over these invalid objects, they are all part of our VPN filters on our VPN tunnels. Is there anyway for the Tool to recognize that these are ACLs rules in the ASA and that they...
hi all, i tried to use the Threat Tuning in BPA but it does not work. May I know what is the steps to use this? Thanks
I'm probably missing it, but where is the option to push "only changes" through the API. I know the MT had it, but can't seem to find it on expedition.
Can someone please provide the steps to update Expedition? I'm currentl using 1.0.84, and I know that there are more recent versions. However I see no way from the UI to install updates and apt-get doesn't work because it says the repo is insecure. Thanks!
I don't see checkpoint viewer in expedition, has it been removed for any reason? MT 3.1, Expedition,
I added several new users this morning, and by the afternoon Expedition considered them "inactive".
Hey Team! I'm looking into Expedition for possibly using it to find unused FQDN Objects on our Firewalls that are in rules. We hit our quota almost every quarter which creates havoc and maintenance time, less work on the fun stuff here.I would love to know if this tool could be used for finding Unused FQDN objects in and out of rules. Thanks
Hi, What are the best ways to get logs automatically to Expedition and have job automatically run to proccess it? Thanks
Hello, Apparently there is no option to import a spyware profile snippet into my project. On the snippet tabs when I try to add one the type field doesn't contain a spyware option. I tried manually typing:spyware, spayware profiles,etc.... But when I try to import the snippet into my project it doesn't show up under objects>contents>spyw...
Can you use the ML and rule enhancements on security policy that is located in panorama. Im struggling a bit to get it to work. I set my project up to use panorama and then brought in the firewalls. There is not a schedule log export function to panorama to csv so I am exporting from firewall. I tried fwd syslog but the tool did not recogniz...
We have quite a few Palo Altos that we inherited that have many local policies. We would like to manage these policies via Panorama. Is it possible to convert Local Security Policies to Panorama Policies using Expedition? If so is there a guide on how to do that?
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
