Anyone know server sizing requirements for this? Minimum cpu, memory and storage? Also, what is the recommended way to install?
I started by running the command scp export log traffic start-time equal 2018/07/30@00:00:00 end-time equal 2018/07/30@23:45:00 to expedition@172.30.200.117:/PALogs/mltest.csv on my PA220. root@Expedition:/PALogs# ls -ltotal 64296-rw-rw-r-- 1 expedition expedition 65830760 Aug 1 17:35 mltest.csvdrwxr-xr-x 2 www-data www-data 4096 Aug 1 ...
I created an OVA for my team and put it up here (Note, this isn't the official release now offered by PANW): https://drive.google.com/open?id=1Z9GrCF8I_BZzpbEmEh6G75npo05_4G0c Be sure to go Settings > M. Learning > and change the Expedition ML Address address to your VM's IP. Then return to the Dashboad and Start the Agent. [UPDATE 6.4...
Expedition uses APACHE as a web server and PHP as module for the scripts. By default PHP allow users to upload files with a maximum size of 2M, this can be updated by changing the PHP.ini sudo vi /etc/php/7.0/apache2/php.ini go to line where this variable is defined upload_max_filesize = 2M and replace by upload_max_filesize = 250M There...
I am running latest version 1.0.91. I have a user at both Panorama and the firewall with the API key that is associated with Expedition. Panorama holds all of the config, but I am unable to pull it from either the firewall or Panorama. The devices are added fine, they pull all of the information about licenses and other information, but it does ...
Security Policy View Expedition will put in read-only mode the Security Rules when the VSYS or DEVICEGROUP selected from the bottom bar is "all" to avoid you can multiedit rules from different VSYS or DEVICEGROUPS, so to enable the Edition you must select a VSYS or DEVICEGROUP other than "all" like "vsys1"
Hello there, I was followng the new user guide with igratigon for a Fortinet config to a Pal olto. In my Expedition which is up-to-date, the remap button does not work - when I click it, the dropdown of templates open, no remap window is shown.. I can edit an interface clicking in it, but subinterface does not remap.. This should not be expect...
Hello there, I saw the video for ML - the features looks nice, however I am wonderinf is there are other alternatives other than send info via syslog or scp (as in video). I will like just to export it manually since I have my VM on my laptop and also directly from the device (in the future might have it directly connected). Pleas let me kno...
hey i added a new pa820 device to the devices section and have added the credentials for the api then when i click on the "contents" tab "retrive contents" it states that is downloading but this state is not chaning to "downloaded" as in the admi guide. where can i see logs about it ? or fix it ? thanks
hey i have warnings on some of the nat rules the warning is : "NAT RulseID[4] is using an address [192.168.152.50] that is not defined in my databse action: "adding to the DB" i have an object with this IP on the objects list how do i fix this warning? thanks
Hello, Has anyone else ran into the occourance where the set commands (specfically for secuirty policies) are missing? The Secuirty/NAT policies are indeed in the XML. When I try to go ahead an regernate the XML and set output I get an error saying "aborted".
Hey Everyone, Looking to get Expedition in Azure specifically. I see details on creating an ovf, but looking for steps for building this in Azure. I know that MS has a converted for OVF also, but am worried about double conversions. Any help is appreciated and Thanks!
Hi folks! We just released Expedition and we are finishing to edit the documentation, expect to be posted here in the next days, thanks for your patience and feel free to ask us anything you need. Enjoy !
Hi I'm going to migrate Checkpoint firewall to existing Palo Alto Networks deployment and I'd like to use objects already existing in Panorama. I've connected Panorama and imported Checkpoint config to one project. I'd like to add Checkpoint config and objects to new Device Group and use existing shared objects as well. Is there a way how to do ...
Next hurdle - When I am trying to import a set of RE rules, I select what I want, the specific sections I want, etc, and hit Import, and the status at the bottom of the box says "Pending...". What is the status/log file to monitor for that process? /tmp/error_SecRulesEnrich and /tmp/error_SecRulesEnrich2 are neither one incrementing any new line...
My customer is up and running but he is receiving this error when performing an App ID adoption check: “Completed. This log connector does not have a PANOS device assigned” Thanks in advance for the help!
Hi, ever i try to use "Auto Zone Assigments" i got the message: A default gateway is mandatory in order to correctly calculate the zones. Add a Default Gateway to your virtual router and try it again I put already the default route inside the used virtual route, but it not works. Already tested: 0.0.0.0, 0.0.0.0/0, next Hop empty, next Hop...
According to hardening guide one should run two commands: sudo apt-get updatesudo apt-get upgrade The first command throws the following message: W: The repository 'https://conversionupdates.paloaltonetworks.com expedition-updates/ Release' does not have a Release file.N: Data from such a repository can't be authenticated and is therefore ...
We have a pair of 3020's, not running HA, managed by Panorama and an M-100 setup in Log Collector Mode only. I'm not having any luck getting my traffic logs to export to the Expedition /home/expedition/logs/ directory. I've setup a Scheduled Log Export on my M-100 with the following: Log Type - Traffic Protocol - SCP Hostname - my Expedition...
reaper
on:
Preparing Exp Tool for Fortigate to PA migration
reaper
on:
Need to in Expedition tool from scrach
