I have a
situation where we are taking multiple firewalls some of which are centrally
managed by the "old management server" and some are Firewall Internet Gateways
(both the enforcement point and the managemet).
We are migrating all the
firewalls to be managed by the "new management server" which will be up and
running while the "old" one is. We will be migrating them one by one over
to the new one.
All the different firewalls are at different versions of
4.1. My experience with importing objects from different versions has been
less than stellar, so we have elected to manually duplicate the objects and
rules in the "new management server" instead of doing a "fwm confmerge"
for instance.
My question -- finally -- is....has anyone had any good
experiences and methods for verifying that the rulebases and objects are the
same. Any recommendations (like using a diff on the .W rulebase files) or
things to watch out for would be much appreciated.
There are a lot of
firewalls and we are trying to limit our exposure to fat-fingering the manual
entries.
Regards
|