Hello everyone,
Currently, we are preparing a plan to replace three 5200 devices on three office sites with three 9100 devices, all of which will run standalone.
Current product: 5200 appliance, standalone, R81.20 hotfix take 65
New replacement product: 9100 appliance
Blade uses:
- Network Security: Firewall, Application, URL Filtering, Threat Prevention, IPSec VPN (Site-to-Site VPN, Remote Access VPN)
- Management: Network Security Management, Logging & Status
We plan to do so according to the following document: Migrating Database Between R81.20 Security Management Servers (checkpoint.com)
But we have a few concerns:
- Following the above document, "./migrate_server" will be used. Does someone know which configurations below will be migrated:
- Gateway: Interfaces, VLANs, and Routes
- Management: Security Policy, VPN, Object (especially about 100 local users on the checkpoint we created, using a cert for authentication. If the users and certs cannot be migrated, it will take a lot of time to create and give a cert file for each employee.)
- Based on your experience, are there any issues we need to pay attention to to avoid problems?
Or is there another best-practice way to migrate standalone configurations?
Please help me the answer.
Thank you so much,
Best Regards.