Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
9927
Views
0
Helpful
8
Replies

Moving from Cisco ASA to Fortigate

matti_nok
Level 1
Level 1

‎05-17-2018 04:06 AM - edited ‎03-12-2019 05:18 AM

Hey,

 

I'm started as trainee job couple weeks ago and my first task is to migrate Cisco ASA to a Fortigate firewall. I have CCNA experience so I'm not completely lost. 

 

My problem is how to move all the VPN credentials from Cisco to FortiGate one? I've rarely touched firewalls and the ones is touched were usually running pfSense.

 

Another question/problem is, that is there any easy way to extract Cisco ASA configuration (ASMD is not working) apart just from logging everything with PuTTY?

 

Tanks in advance!

 

 

 

 

Labels:
0 Helpful
8 Replies 8

Karsten Iwen
VIP
VIP

‎05-17-2018 05:28 AM

1) If you need the PSKs when referring to the VPN-credentials, then the following command will show them:

asa# more system:running-config | b tunnel-group

User-passwords are hashed and not extractable in plain-text.

2) You can use the "backup" command in CLI and generate a ZIP-file with all configuration that you can transfer to your PC.

0 Helpful

matti_nok
Level 1
Level 1
In response to Karsten Iwen

‎05-18-2018 01:52 AM

Thanks for your answer.

 

Never used backup command need to look into it, any pointers?

0 Helpful

matti_nok
Level 1
Level 1
In response to Karsten Iwen

‎05-21-2018 10:50 PM

Thanks...

0 Helpful

AlexPi
Level 1
Level 1

‎05-21-2018 05:46 AM

Hello Matti,

 

Have a look at the FortiNet Automated Configuration Migration Tool.

 

I think this would help you a lot. Since it support migration of all relevant components of the firewall including VPNs.

 

Hope that helps.

 

------------------------------------------------------------------
If this was helpful, please vote as helpful by clicking on the star icon below.
-------------------------------------
0 Helpful

matti_nok
Level 1
Level 1
In response to AlexPi

‎05-21-2018 10:51 PM

The licence for that is 3000$ a year, we only need for 2 days

0 Helpful

AlexPi
Level 1
Level 1
In response to matti_nok

‎05-22-2018 01:28 AM

Wow!!! Thieves!!! I would expect since you buy their product you would be able to get a tool to help you migrate across...

 

Since you bought their product and you are moving from another vendor to them, I would contact their sales team and explain the situation. I have read in some forums that they give out fully functional demo releases of the product.

 

Unfortunately I cannot help you on the technical bit since I have never used a Fortigate firewall. :-( 

------------------------------------------------------------------
If this was helpful, please vote as helpful by clicking on the star icon below.
-------------------------------------
0 Helpful

matti_nok
Level 1
Level 1
In response to AlexPi

‎05-22-2018 01:44 AM

Yup, that's what my boss said, it's stupid that you need buy whole 1 year of license... Who migrates their devices for a whole year?!?

 

I'll ask him, that can I send them an email in the name of company, hopefully he agrees.

0 Helpful
Customers Also Viewed These Support Documents