Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 6 replies
  • Subscribers 31 subscribers
  • Views 1344 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Export / Import All Configuration from XG230 (SFOS 18.5.1) to Fortigate FW

Vinh Dang

Hello all,

I would like to hear from all of you to finalize what's the best practice for me.

Scenario as below:

- All offices head & branch) use Sophos FW

- I deploy new fw Fortigate at DC

- I would like to export all rule/policy/configuration from Sophos (using SFOS 18.5.1) in head-office and import to new fw Fortigate in DC.

Do you know any tool or sth like that because I have hundreds rule and policy cannot manual re-create in new Fortigate fw.

I found on the GG that FortiConverse can import and converse policy from 3rd party but they require too much to purchase lics.

Waiting ideal from all of you



This thread was automatically locked due to age.
Parents
  • 0

    Hello,

    I would not expect that this works in a proper way at all. Sophos XG and Fortigate have different concepts in assigning objects and defining rules and policies.

    But: If you say you have "hundreds of rules" I really recommend to clean up things.

    We have a customer with 26 (!) internal LAN-segments who has exactly 102 rules, which is still a lot. But they have a very clean concept, of how, what and where to allow services and where not. So this leads to an easily understandable set of rules, which are logically transferable to other platforms.

    This is just my 2 cents and how I would do this task.

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • 0

    Hello,

    I would not expect that this works in a proper way at all. Sophos XG and Fortigate have different concepts in assigning objects and defining rules and policies.

    But: If you say you have "hundreds of rules" I really recommend to clean up things.

    We have a customer with 26 (!) internal LAN-segments who has exactly 102 rules, which is still a lot. But they have a very clean concept, of how, what and where to allow services and where not. So this leads to an easily understandable set of rules, which are logically transferable to other platforms.

    This is just my 2 cents and how I would do this task.

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Children
No Data
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?