Solved

How Do I get the settings from a PIX 506 to a SonicWall TZ 180

Posted on 2008-10-28
3
327 Views
Last Modified: 2012-05-05
Hi,
I have a client that I am trying to move from a Cisco PIX 506 to a new SonicWall TZ 180.
The do not seem to have the graphical interface running on the PIX 506.

How do I get the configuration information from the PIX so I can program the new firewall correctly?

Ports, etc?

Thanks for any help
0
Comment
Question by:gkelyman
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 4

Accepted Solution

by:
keamo earned 500 total points
ID: 22825368
If you have to have the gui for the 506, you'll have to install Cisco PDM.---  http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pdm/v_21/pdmig/pdminst.htm

Otherwise you'll have to telnet to the 506 to view your ACL's and firewall rules and then just recreate those same rules on the Sonicwall.
0
 

Author Comment

by:gkelyman
ID: 22832922
Hmmm OK,


So is there a reference somewhere as to what the settings text means?

I see all this ?fixup and imcp , inside, outside,

here is a list of the fixup lists. What are these?

fixup protocol ftp 21
fixup protocol http 80
fixup protocol h323 1720
fixup protocol rsh 514
fixup protocol rtsp 554
fixup protocol sqlnet 1521
fixup protocol sip 5060
fixup protocol skinny 2000
no fixup protocol smtp 25

Thanks for any illumination
0
 
LVL 4

Expert Comment

by:keamo
ID: 22833158
Using the the fixup protocol will let you control specific ports on your firewall.  i.e. port 21, 80 ,etc

http://seclists.org/basics/2004/Feb/0219.html

http://www.netcraftsmen.net/welcher/papers/pix03.html

Most of these you probably won't need to create in your Sonicwall.
0

Featured Post

Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Guest Wi-Fi Time out 3 31
ASA 5506X create a simple DMZ 4 43
Help creating a custom privilege level in a Cisco switch or router 3 46
snmp v2 configuration on a switch 3 39
If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
This article will cover setting up redundant ISPs for outbound connectivity on an ASA 5510 (although the same should work on the 5520s and up as well).  It’s important to note that this covers outbound connectivity only.  The ASA does not have built…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question