topic Re: Migrating Firewall from ASA in Network Security https://community.cisco.com/t5/network-security/migrating-firewall-from-asa/m-p/4457431#M1083231 <P>you can use a software&nbsp; CLI Analyser. link here <A href="https://community.cisco.com/t5/network-security/cisco-cli-analyzer-2-0-released-in-addition-to-asa-we-now/td-p/2866138" target="_blank">https://community.cisco.com/t5/network-security/cisco-cli-analyzer-2-0-released-in-addition-to-asa-we-now/td-p/2866138</A></P> <P>&nbsp;</P> <P><A href="https://software.cisco.com/download/home/286311499/type/286312309/os/Windows%2010%20(x64)/release/3.6.8" target="_blank">https://software.cisco.com/download/home/286311499/type/286312309/os/Windows%2010%20(x64)/release/3.6.8</A></P> <P>&nbsp;</P> <P>you can configure a syslog server to off load you logs messages to see what traffic is going through or you can set up a capture on firewall.</P> <P>&nbsp;</P> Tue, 31 Aug 2021 09:36:50 GMT Sheraz.Salim 2021-08-31T09:36:50Z Migrating Firewall from ASA https://community.cisco.com/t5/network-security/migrating-firewall-from-asa/m-p/4457381#M1083229 <P>Hi Guys,</P><P>Hope all are okay.</P><P>I am tasked to migrate our firewall from ASA to a non-Cisco firewall and it includes firewall clean up. I would to ask in an ASA standpoint, what are the strategies for the engineer to determine duplicates and non-used policies? Also, how can I determine the traffic passing through permit any any rule so that I can create a separate rule for those traffic and eventually disable the permit any any rule.</P><P>Thank you</P> Tue, 31 Aug 2021 08:18:57 GMT https://community.cisco.com/t5/network-security/migrating-firewall-from-asa/m-p/4457381#M1083229 fatalXerror 2021-08-31T08:18:57Z Re: Migrating Firewall from ASA https://community.cisco.com/t5/network-security/migrating-firewall-from-asa/m-p/4457431#M1083231 <P>you can use a software&nbsp; CLI Analyser. link here <A href="https://community.cisco.com/t5/network-security/cisco-cli-analyzer-2-0-released-in-addition-to-asa-we-now/td-p/2866138" target="_blank">https://community.cisco.com/t5/network-security/cisco-cli-analyzer-2-0-released-in-addition-to-asa-we-now/td-p/2866138</A></P> <P>&nbsp;</P> <P><A href="https://software.cisco.com/download/home/286311499/type/286312309/os/Windows%2010%20(x64)/release/3.6.8" target="_blank">https://software.cisco.com/download/home/286311499/type/286312309/os/Windows%2010%20(x64)/release/3.6.8</A></P> <P>&nbsp;</P> <P>you can configure a syslog server to off load you logs messages to see what traffic is going through or you can set up a capture on firewall.</P> <P>&nbsp;</P> Tue, 31 Aug 2021 09:36:50 GMT https://community.cisco.com/t5/network-security/migrating-firewall-from-asa/m-p/4457431#M1083231 Sheraz.Salim 2021-08-31T09:36:50Z