Forum Discussion

devendrakarthik's avatar
devendrakarthik
Icon for Nimbostratus rankNimbostratus
Nov 15, 2017

Cisco FWSM to F5 AFM config conversion

Hi,

 

We want to migrate the Cisco FWSM module config to an F5 AFM. The ruleset is about 2000 rules (very similar to Cisco ASA) and any config conversion script or guidelines will be really helpful. I found below article but seems to be a lot of manual effort. Also, please throw light on NAT syntax conversion.

 

https://devcentral.f5.com/questions/afm-configuration-file

 

regards Karthik

 

1 Reply

  • Unless you're a Python guru.. I would extract the ASA ACLs to a text editor, manipulate the file so you can save it as a CSV (columns such as source address, destination address, destination port etc). You may want to do the same for network objects etc if you want to use friendly names, other than just IP addresses

     

    Then make friends with =CONCATENATE and =VLOOKUP in Excel to generate your F5 syntax