Migration from Physical to VM series firewall

Reply
deepak12
L3 Networker

Migration from Physical to VM series firewall

Hi All ,

 

We are planning to move from on-premises to cloud .

Currently we are having physical devices and  we are checking possibilities how we can migrate to VM series firewall ?

 

Do we need to do config manually ? or is there anyway we can export/import the config  .If yes.. will it rake care pre-shared keys as well ?


Accepted Solutions
reaper
L7 Applicator

The ipsec preshared keys, certs and password hashes will come along, if you're talking about the master key, as @BPry  mentioned; you'll need to input the correct password for the config hashes to be decrypted properly

Tom Piens - PANgurus.com
Like my answer? check out my book! amazon.com/dp/1789956374

View solution in original post


All Replies
reaper
L7 Applicator

you can export the named configuration file and import it into a VM.

your main concern will be making sure the interfaces line up, theIP addresses are set correctly (for dataplane and mgmt interfaces), and the NAT rules are set properly

 

 

Tom Piens - PANgurus.com
Like my answer? check out my book! amazon.com/dp/1789956374
deepak12
L3 Networker

@reaper ,

 

Thanks for your help.

Just want to confirm for pre-shared keys..

So these also will be taken care during export/import to vm or do we need to manually configure it again after import.

 

BPry
Cyber Elite

@deepak12,

If you set the master key to the same value as you have on your physical equipment, the pre-shared will be perfectly fine following the import. If you don't know your current master key, the phash and pre-shared-key values will need to be updated before you do a commit as they won't match what you are expecting anymore. 

reaper
L7 Applicator

The ipsec preshared keys, certs and password hashes will come along, if you're talking about the master key, as @BPry  mentioned; you'll need to input the correct password for the config hashes to be decrypted properly

Tom Piens - PANgurus.com
Like my answer? check out my book! amazon.com/dp/1789956374

View solution in original post

deepak12
L3 Networker

@reaper @BPry ,

 

Thanks a lot for your help .

 

Thanks..

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!