This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Cookie Policy. Click Preferences to customize your cookie settings.
About KenLynch
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- LIVEcommunity
- About KenLynch
03-09-2023
2Posts
2Likes
0Solutions
Mar 09, 2023Last Visited
User
Activity
User
Profile
Latest posts by KenLynch
| Subject | Views | Posted |
|---|---|---|
| 11398 | 04-18-2019 05:02 AM | |
| 13160 | 10-15-2018 11:40 AM |
My Liked Posts
| Subject | Likes | Posted |
|---|---|---|
| 2 Likes | 10-15-2018 11:40 AM |
User Badges
Community Statistics
| Member Since | 11-16-2017 07:03 AM |
| Date Last Visited | 03-09-2023 09:42 PM |
| Posts | 2 |
| Total Likes Received | 2 |
04-18-2019
05:02 AM
I could not find and download the old tool. It was removed from production I think. The new Expedition tool looked not quite ready for production at the time of my migration. We eneded up hiring a very talented consultant named Shawn who helped us through the proces.
... View more
10-15-2018
11:40 AM
2 Kudos
My Palo Alto guy was super helpful in this reguard but I still need help.
"This is what I got back from the SE org. "We handle it [SonicWall Migration] through CSV import function:"
1) Retrieve exported config from sonicwall (it’s base64 encoded, so it needs to be parsed)
2) Download SonicReader (free), it spits out the config in an HTML file
3) Copy the HTML tables and paste into exel. Format the data appropriately. There are some nuances, for example Sonicwall service objects might be “TCP” but migration tool looks for “tcp” in lower case. This is just trial and error.
4) Save file as a CSV and change to a semi-colon delimited file
5) import CSV into MT.
- I recommend doing it in small stages. Eg. Import address objects first and actually push it to the candidate config of a firewall. If there are formatting issues, better to learn now than when pushing a full config consisting of address objects, groups, service objects, policies, etc and you get over 1000 errors. Once you complete the address objects, move to address groups, push to the candidate config of a firewall, etc."
I was able to get through most of those steps successfully and was able to upload them into the import section of the tool. Unfortunately there are 12 different sections in the HTML I generated and only 9 differently named sections to upload CSV files.
These are the sections from HTML These are the options in the MT
01PNT-Interfaces.csv “interfaces”
02PNT-AddressObjects.csv This likely correlates to the “Address” dropdown in Expedition import
03PNT-AddressGroups.csv “address groups” is an exact match
04PNT-ServiceObjects.csv “Services”
05PNT-ServiceGroups.csv “Service Groups”
06PNT-Zones.csv
07PNT-FirewallPolicies.csv
08PNT-NATPolicies.csv
09PNT-UserObjects.csv
10PNT-UserGroupObjects.csv
11PNT-IPSec-Tunnels.csv
12PNT-RoutingObjects.csv
…but the Regions, Security Rules, and Static Routes from the Expedition import window don’t seem to correlate to the HTML sections.
Everything was presented very nicely as a table in the HTML file but the Zones did not show up in a table so I'm not sure how to configure them.
... View more
Contact Me
| Online Status |
Offline
|
| Date Last Visited |
03-09-2023
09:42 PM
|
Latest Tags
No tags yet
LEGAL NOTICES
Copyright 2007 - 2023 - Palo Alto Networks