Fortinet black logo

Save the source configuration files on Forcepoint Sidewinder

23.1.0
Copy Link
Copy Doc ID dc7719fd-c5d8-11ed-8e6d-fa163e15d75b:801553

Save the source configuration files on Forcepoint Sidewinder

The following is for McAfee Firewall Enterprise 8. The config is binary therefore the output of the following commands must be saved to a text file for FortiConverter.

  • Interface and Zone (cf interface|zone|zonegroup query)
  • Address object and address group object (cf domain|ipaddr|iprange|subnet|host|geolocation|netgroup query)
  • Service object and service group object (cf application|appgroup query)
  • NAT objects (cf netmap query)
  • Admin users and firewall users & user groups (cf adminuser query, cf udb query, cf usergroup query)
  • Static routes (cf route query)
  • Firewall Policy (cf policy query)

Syntax difference on Sidewinder's CLI between v7 and v8

McAfee Firewall Enterprise v7 McAfee Firewall Enterprise v8
cf interface query cf interface query
cf burb query cf zone query
cf burbgroup query cf zonegroup query
cf domain query cf domain query
cf ipaddr query cf ipaddr query
cf iprange query cf iprange query
cf subnet query cf subnet query
cf host query cf host query
cf geolocation query cf geolocation query
cf netgroup query cf netgroup query
cf service query

cf application query

cf servicegroup query cf appgroup query
cf netmap query cf netmap query
cf adminuser query cf adminuser query
cf udb query cf udb query
cf usergroup query cf usergroup query
cf static query cf route query
cf policy query cf policy query

Sample CLI commands to retrieve configurations from Sidewinder and upload to a SCP server.

cf interface query > fc_interface.txt

cf burb query > fc_burb.txt

cf burbgroup query > fc_burbgroup.txt

cf domain query > fc_domain.txt

cf ipaddr query > fc_ipaddr.txt

cf iprange query > fc_iprange.txt

cf subnet query > fc_subnet.txt

cf netgroup query > fc_netgroup.txt

cf service query > fc_service.txt

cf servicegroup query > fc_servicegroup.txt

cf adminuser query > fc_adminuser.txt

cf udb query > fc_udb.txt

cf usergroup query > fc_usergroup.txt

cf static query > fc_static.txt

cf policy query > fc_policy.txt

cf ipsec query show_clear_passwords=true > fc_ipsec.txt

cf geolocation list > fc_geoloc_list.txt

cf geolocation query > fc_geoloc_query.txt

cf netmap query > fc_netmap.txt

cat fc_*.txt > forticonverter.txt

scp -v forticonverter.txt <username>@xxx.xxx.xxx.xxx:/

Save the source configuration files on Forcepoint Sidewinder

The following is for McAfee Firewall Enterprise 8. The config is binary therefore the output of the following commands must be saved to a text file for FortiConverter.

  • Interface and Zone (cf interface|zone|zonegroup query)
  • Address object and address group object (cf domain|ipaddr|iprange|subnet|host|geolocation|netgroup query)
  • Service object and service group object (cf application|appgroup query)
  • NAT objects (cf netmap query)
  • Admin users and firewall users & user groups (cf adminuser query, cf udb query, cf usergroup query)
  • Static routes (cf route query)
  • Firewall Policy (cf policy query)

Syntax difference on Sidewinder's CLI between v7 and v8

McAfee Firewall Enterprise v7 McAfee Firewall Enterprise v8
cf interface query cf interface query
cf burb query cf zone query
cf burbgroup query cf zonegroup query
cf domain query cf domain query
cf ipaddr query cf ipaddr query
cf iprange query cf iprange query
cf subnet query cf subnet query
cf host query cf host query
cf geolocation query cf geolocation query
cf netgroup query cf netgroup query
cf service query

cf application query

cf servicegroup query cf appgroup query
cf netmap query cf netmap query
cf adminuser query cf adminuser query
cf udb query cf udb query
cf usergroup query cf usergroup query
cf static query cf route query
cf policy query cf policy query

Sample CLI commands to retrieve configurations from Sidewinder and upload to a SCP server.

cf interface query > fc_interface.txt

cf burb query > fc_burb.txt

cf burbgroup query > fc_burbgroup.txt

cf domain query > fc_domain.txt

cf ipaddr query > fc_ipaddr.txt

cf iprange query > fc_iprange.txt

cf subnet query > fc_subnet.txt

cf netgroup query > fc_netgroup.txt

cf service query > fc_service.txt

cf servicegroup query > fc_servicegroup.txt

cf adminuser query > fc_adminuser.txt

cf udb query > fc_udb.txt

cf usergroup query > fc_usergroup.txt

cf static query > fc_static.txt

cf policy query > fc_policy.txt

cf ipsec query show_clear_passwords=true > fc_ipsec.txt

cf geolocation list > fc_geoloc_list.txt

cf geolocation query > fc_geoloc_query.txt

cf netmap query > fc_netmap.txt

cat fc_*.txt > forticonverter.txt

scp -v forticonverter.txt <username>@xxx.xxx.xxx.xxx:/