Actually we are planning to migrate from cisco ASA firewall to Fortinet. so i am using foticonverter for converting those Rules,NAT, VPN and all policies on cisco firewall.
Migration for cisco ASA to Fortinet 1000D:
Will forticonverter will help to migrate all those stuffs to fortigate.
Which converter is the best for migration?
Do i need to purchase any license for migration?
What are all the stuffs will be migrating from Cisco ASA to Fortigate?
What stuffs will not be migrating through converter?
What the things need to be configured manually?
What is the best practices for doing all those things?
yes it does a good job , but some item will STILL need to be reviewed after conversion
it's not 100% fool-proof
your sales team can give you a demo ( free )
read the release notes on what's is or not supported and based on cisco ASA or PIX or whatever
review all ipsec and webvpn stuff and convert these by had or manually imho
after all of the above, than give it a spin if you think it will help[/ul]
FWIW if you have one cisco ASA and let's say under 100 fwpolicy and under 100 address objects, you are not doing anything crazy with multi-context o qos, I would not waste buying a FortiConvertor.
It's a tool but it's not 100% fool-proof or even required for 7 out of 10 orgs that I've see purchase it. I also would not migrating anything without conducting a 1st fw-security audit and review what you have NOW. It makes no sense to migrate junk or bad practices or implementation from one cisco ASA to a fortigate imho ;)
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.