Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
614
Views
0
Helpful
1
Replies

Migrating Firewall from ASA

fatalXerror
Level 5
Level 5

‎08-31-2021 01:18 AM

Hi Guys,

Hope all are okay.

I am tasked to migrate our firewall from ASA to a non-Cisco firewall and it includes firewall clean up. I would to ask in an ASA standpoint, what are the strategies for the engineer to determine duplicates and non-used policies? Also, how can I determine the traffic passing through permit any any rule so that I can create a separate rule for those traffic and eventually disable the permit any any rule.

Thank you

0 Helpful
1 Reply 1

Sheraz.Salim
VIP
VIP

‎08-31-2021 02:36 AM

you can use a software  CLI Analyser. link here https://community.cisco.com/t5/network-security/cisco-cli-analyzer-2-0-released-in-addition-to-asa-we-now/td-p/2866138

 

https://software.cisco.com/download/home/286311499/type/286312309/os/Windows%2010%20(x64)/release/3.6.8

 

you can configure a syslog server to off load you logs messages to see what traffic is going through or you can set up a capture on firewall.

 

please do not forget to rate.
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card