Saving the Check Point source configuration file from Provider 1
1. Provider – 1 to Fortigate conversion
2. Provider - 1 to FortiManager conversion
1. Provider – 1 to Fortigate conversion
Usually used while converting a single checkpoint firewall to a Fortigate. In this case chose "Smartcenter" option while doing the conversion
1.1 Both MDS/CMA & Gateways are on version before R80.10
MDS is running with multiple CMA domains and we need to convert a single CMA to FortiGate, please refer Section-1 to fetch the files.
1.2 Both MDS/CMA & Gateways are on version R80.10 Or later
MDS is running with multiple CMA domains and we need to convert a single CMA to FortiGate, please refer Section-2 to fetch the files.
1.3 MDS/CMA is on R80.10 but Gateways running below R80 such as R77
- We can fetch policy and Nat csv files as mentioned above as the management server running with R80.
- Object definitions and user files are available in the below table.
File Path:
| File | File name |
Location |
Path or command |
|---|---|---|---|
| Object definitions | objects_5_0.C (Checkpoint NG/NGX) |
MDS/CMA |
/opt/CPmds-R80/customers/<CMA_Server>/CPR77CMP-R80/conf/
|
| Policy rulebases | rulebase_5_0.fws |
MDS/CMA |
/opt/CPmds-R80/customers/<CMA_Server>/CPR77CMP-R80/conf/
|
| <package name>.W |
|
||
| User and user group file | fwauth.NDB |
MDS/CMA |
/opt/CPmds-R80/customers/<CMA_Server>/CPR77CMP-R80/conf/
|
|
Identity role file |
identity_roles.C |
MDS/CMA |
|
| Route | NA |
Gateway |
|
|
ifconfig file |
NA |
Gateway |
|
|
DHCP relay file |
NA |
Gateway |
|
Note: Alternately, you can choose to download Policy and rule definitions file "rulebases_5_0.fws" from following path if you are interested to cross verify it with CSV file:
/opt/CPmds-R80/customers/<CMA_Server>/CPR77CMP-R80/conf/
|
2. Provider - 1 to FortiManager conversion
Usually used while converting a multiple checkpoint firewall configuration to Fortimanager output. In this case use "Provider-1" option while doing the conversion
- MDS definitions – "mdss.C" This file contains the MDS hierarchy.
- MDS object definitions – "objects_5_0.C" This file contains the definition of domains in each MDS.
- Global object definitions – "objects_5_0.C" This file contains the definition of objects used in global policies.
- Global policy rule bases – "rulebases_5_0.fws" This file contains the definition of global policies.
- Global policy assignments – "customers.C"
- CMA domain files – Every CMA needs a set of "objects_5_0.C", "rulebases_5_0.fws" and "fwauth.NDB"(optional) files as the input.
File Path:
|
File |
File name |
Path |
|---|---|---|
|
MDS definitions |
mdss.C |
|
|
MDS object definitions |
objects_5_0.C |
|
|
Global object definitions |
objects_5_0.C |
|
|
Global policy rule bases |
rulebases_5_0.fws |
|
|
Global policy assignments |
customers.C |
|
|
CMA object definitions |
objects_5_0.C |
Path format: " e.g. "
|
| CMA policy rulebases rulebases_5_0.fws | CMA policy rulebases rulebases_5_0.fws |
Uploader Icons used in tool:
