Tool or method to combine redundant polices

Forum|Forum|6 years ago
July 11, 2019
1 reply
2007 views

Hi Guys,

We have a couple of firewalls on which the policy count has exceeded 20k. Could someone please let me know if they know of a tool or a method to combine these policies. I tried to check if Forticonverter could be used but it doesn't have an option to import a Fortigate configuration.

Thanks

emnoc

New Member

1st look for policies that has no "hits". These are signs of duplicate, or poorly written, or not required

Next, check the address book for duplication in hosts. These can be eliminated or corrected thru policies and address-groups

Ken Felix

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded