About gfowler

This problem is not resolved. I upgraded.  Went to the EXPORT tab.  Click Generate XML & Set..  set file is still zero bytes.   I exported the project.  created a new project, imported..  Generate XML & set..  set file is still zero bytes..   ... View more

I forgot to ask.  What is the most recent version that is successfully producing SET commands. ... View more

Is the Export Config bug responsible for the absence of SET commands in the config output ? My MT-project-set.txt is zero bytes. ... View more

Should I assume these forums are not monitored by palo support or the Expedition Devs ? Is there a better place to get support for this tool ? ... View more

Upgraded from 1.1.98 to 1.1.100.. Getting the following error on Expedition Dashboard. Verify that APT Software Dependencies have been installed The following dependencies for ML are missing : expedition-beta (1.1.48.2) Remediation: Execute the following command in CLI : sudo apt-get install expedition-beta   Repeated upgrade manually three times with reboots in between.  No change.  Unable to remediate this error.   Also note..  you did not change the version OR the date in the 1.1.100 post above.  It says 1.1.98 and May 12.         ... View more

The name can be changed..   but the "Media" does not change.. Look at a column header and expose the Media column, hidden by default.   Mine are blank..   I can create new Ethernet and ae interfaces..  and they appear with new Section headers of Media: ethernet and Media: aggregate-ethernet..    but I can't seem to move my imported interfaces from "Media:" to "Media: aggregate-ethernet".       ... View more

I see what your saying.. but that changes the Type (Layer 3, layer 2 etc.)..  it does not change it to ethernet or aggregate-ethernet..   even though there is an option in the pull down for "Aggregate Ethernet", it does not impact the Media Type..   There was a negative effect to attempting that..  it wiped out the IP address information and security zone..  VLAN  tag stayed though. oddly enough..       ... View more

Running 1.1.98 and having the following problems, thus far.   1. Imported service groups from CheckPoint R80.10 include services not in the original service group.  Extra services are being added. 2. Web GUI does not recognize 'application-default'.  i have to add a bogus application-default service; ie: tcp/9999.   ... View more

So far, I've found two solutions.   1.  Disable Session Restore completely.  The core problem appears to be with the previous PanGPUI sessions being restored.  But every time you reboot, an additional session is added.  Thus the first boot gives one PanGPUI.. the second reboot gives two and so on..   OR    2.  Exclude PanGPUI from session restore.   additionally, adding "X-KDE-autostart-phase=2" to the autostart file for PanGPUI appears have positive effects as well..  For me, this was installed under /etc/xdg/autostart/   Searching the apps button for 'session' yields Desktop Session app.   Opening that gives me the options to "start with an empty session", as well as the "Applications to be excluded from sessions" text field (add PanGPUI)     ... View more

I'm running Ubuntu 19.10.   The GUI runs..  but, depending on the day, there are between 3 and 10 copies in the tray..  one process for each..  I have to click through each one as only one actually works.  All others ask to enter a portal address.   Any clue how to get it to only start one ?     ... View more

I would like to see a fat client for Log review.   Maybe a QT based executable.   Develop it once and compile for Windows, Mac, and Linux.   I would think such a feature would be exponentially faster than the Flash based log viewer I'm currently saddled with. ... View more

TCPDUMP is one of the hugh reasons for buying one of Palo Alto's competitors.   The ability to gain instant visibility into the traffic flow is priceless. Depending on the way an organization writes its change control policy, the way ASA, Palo Alto, Fortigate and a few others do packet capture could be prevented due a configuration change being involved. But since the other big competittor includes tcpdump, and it's not a piece of configuration, it can be executed anytime, without special permission. I'd like to see a tcpdump command in Palo Alto that is a single line command, and dumps to the screen/tty/console etc. without having to execute a second, third, fourth, or fifth command.   Leaving behind no residual configuration. It would be best if it based on 'tcpdump'.  Having worked with dozens of firewalls, I'm fatigued at having to remember each vendor's unique view on packet capturing command syntax. Even if this feature is not tcpdump under the hood, having it fake being tcpdump would be extremely beneficial. Same command, 'tcpdump', same attributes, '-nn -i eth1/1 -s0 -vv -e -p -A -X -w filename.pcap' etc., and same filter syntax, 'host 1.1.1.1 and port 22 and ! udp' etc. ... View more