Document
Library

online help

About FortiConverter
- Supported vendors & configuration objects
- General limitations
- Licensing
What's new
Installation
- System requirements
- Activating the license
- Enabling remote connections
Alcatel-Lucent Conversion
- Saving the Alcatel-Lucent source configuration file
- Alcatel-Lucent conversion wizard
Bluecoat Conversion
- Saving the Bluecoat source configuration files
- Bluecoat conversion wizard
- Bluecoat start options
- Bluecoat conversion result
Check Point Conversions
- Saving the Check Point source configuration file
- Check Point conversion wizard
- Check Point NAT merge examples
Cisco Conversions
- Saving the Cisco source configuration file
- Cisco conversion wizard
FortiGate Configuration Migration
- Fortinet conversion wizard
- Fortinet Import Wizard
  - Import converted configuration to the device
  - Restore imported configurations to other devices
- Fortinet Bulk Conversion
  - The Interface Mapping page
  - The Bulk Conversion Summary page
Huawei USG Firewall Conversion
- Saving the Huawei source configuration files
- Huawei conversion wizard
- Huawei Start options
- Source Preview
- Huawei Interface mapping
- Huawei Route Information
- Huawei Conversion result
Juniper Conversions
- Saving the Juniper source configuration file
- Juniper conversion wizard
McAfee Sidewinder Conversion
- Saving the McAfee source configuration file
- McAfee conversion wizard
Forcepoint Stonesoft Conversion
- Saving the Stonesoft source configuration files
- Stonesoft Conversion Wizard
- Stonesoft Start options
- Source Preview
- VDOM Mapping Section
- Stonesoft Interface mapping
- Stonesoft Route Information
- Stonesoft Conversion result
Palo Alto Networks Conversion
- Saving the PAN source configuration files
- Palo Alto conversion wizard
Snort Conversion
- Snort conversion wizard
SonicWall Conversion
- Saving the SonicWall source configuration file
- SonicWall conversion wizard
Sophos Conversion
- Saving the Sophos source configuration files
- Sophos conversion wizard
Tipping Point Conversion
- Saving the Tipping Point source configuration file
- Tipping Point conversion wizard
Vyatta Networks Conversion
- Saving the Vyatta source configuration files
- Vyatta conversion wizard
WatchGaurd Conversion
- Saving the WatchGuard source configuration files
- WatchGuard conversion wizard
- WatchGuard Start options
- Source Preview
- WatchGuard Interface mapping
- WatchGuard Route Information
- WatchGuard Conversion result
Tuning the output
- Manage your firewall objects
- Copy an object to another VDOM
- Copy an object's CLI configuration
- Output an unreferenced object
- Rename an object
- Merge duplicate objects
Bulk Conversion
Compare Two Conversions
Connecting FortiGate devices
REST API Import for 3rd Party Vendors
Viewing the results of your automatic conversion
Error Messages
Importing your new configuration into FortiGate
Importing your new configuration into FortiManager
- Working with object output in indexed files
Troubleshooting
- Licensing Issues
- Accessing conversion logs
- Troubleshooting application crashes
- Reviewing errors after FortiGate import
Appendix
- Adjusting table sizes
- NAT merge options
- Add a new folder

Home FortiConverter Tool 6.0.0 online help

6.0.0

Stonesoft Start options

Forcepoint Stonesoft Start options

The following table lists the start settings.

Setting	Description
Profile
Description	Enter a description of the configuration.
Output Options
Output Format	Select the appropriate output for your target Fortinet device.
FOS Version	FortiOS 6.0 and 6.2 have different configuration syntaxes. Select the version that corresponds to the FortiOS version on the target.
Input
Source Configuration	Select the input file.
Bulk Conversion	If there are many devices to be converted where all of them are the same model, sharing the same interface mapping relationship in conversion, then bulk conversion can convert all of them at once. Collect all the configuration files to be converted, compress them into a ZIP file and use the ZIP file as the input.
Target device (Optional)
Target device	Select the model of the target device, or select a device connected to FortiConverter.
Conversion Options
Discard unreferenced firewall objects	Specifies whether addresses and services that aren't referenced by a policy are saved and added to the output. This option can be useful if your target device has table size limitations. You can view the unreferenced objects that FortiConverter removed on the Tuning page.
Adjust Service Table Capacity Size	You can customize the maximum table sizes that FortiConverter uses when Adjust table sizes is selected. For more information, see Adjusting table sizes.
Nat Merge Options
Ignore firewall policies with all or any addresses when processing NAT rules	Specifies whether FortiConverter ignores firewall policies with an "all" or "any" address when it merges a NAT rule and a firewall policy to create a FortiGate NAT policy. FortiConverter creates new policies in the output configuration based on where NAT rules to firewall policies intersect. Because firewall policies that use "all" or "any" as the address create many intersections, Fortinet recommends that you ignore them.
Enable central NAT merge	Specifies whether FortiConverter converts NATs to FortiGate central NATs instead of policy-based NATs. It is recommended to enable this option.

Previous

Next

Forcepoint Stonesoft Start options

The following table lists the start settings.

Setting	Description
Profile
Description	Enter a description of the configuration.
Output Options
Output Format	Select the appropriate output for your target Fortinet device.
FOS Version	FortiOS 6.0 and 6.2 have different configuration syntaxes. Select the version that corresponds to the FortiOS version on the target.
Input
Source Configuration	Select the input file.
Bulk Conversion	If there are many devices to be converted where all of them are the same model, sharing the same interface mapping relationship in conversion, then bulk conversion can convert all of them at once. Collect all the configuration files to be converted, compress them into a ZIP file and use the ZIP file as the input.
Target device (Optional)
Target device	Select the model of the target device, or select a device connected to FortiConverter.
Conversion Options
Discard unreferenced firewall objects	Specifies whether addresses and services that aren't referenced by a policy are saved and added to the output. This option can be useful if your target device has table size limitations. You can view the unreferenced objects that FortiConverter removed on the Tuning page.
Adjust Service Table Capacity Size	You can customize the maximum table sizes that FortiConverter uses when Adjust table sizes is selected. For more information, see Adjusting table sizes.
Nat Merge Options
Ignore firewall policies with all or any addresses when processing NAT rules	Specifies whether FortiConverter ignores firewall policies with an "all" or "any" address when it merges a NAT rule and a firewall policy to create a FortiGate NAT policy. FortiConverter creates new policies in the output configuration based on where NAT rules to firewall policies intersect. Because firewall policies that use "all" or "any" as the address create many intersections, Fortinet recommends that you ignore them.
Enable central NAT merge	Specifies whether FortiConverter converts NATs to FortiGate central NATs instead of policy-based NATs. It is recommended to enable this option.

Previous

Next