This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Moe_89
Contributor
‎2018-05-22 11:56 AM

FWSM migration to Checkpoint R80.10

Hello,

Is it possible to migrate FW & NAT policies, objects from Cisco FWSM to R80.10. SmartMove most probably doesnt support FWSM yet but i was wondering if the old Confwiz would work ?

0 Kudos
1 Reply
Ray_Lal
Participant
‎2018-05-22 01:35 PM

Pretty sure you can, but I'll let someone who knows better confirm. I did it for one of my clients in the past, however we migrated from a whole bunch of ASA's over to a 15600 cluster running R77.30. We used LCMS for the conversion.

I tell you, from my experience, nothing is guaranteed to work as you expect. Be prepared to add missing rules on the go. I found that LCMS missed a tonne of rules, which took a while to sort out, along with NAT rules. Mind you though, we had multiple ASA's that had several internet links, so some were blocking similar inbound traffic.. All together we had over 20k ACL's combined, but LCMS was able to shrink it down to just around 800 IIRC.

I would HIGHLY recommend exporting your NAT's out to excel. Once you convert(Whether LCMS/Manual script), check check check!

0 Kudos
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top