FWConvert

Firewall Policy Converter

senaperdiana.com
Policy Rulebase
ID Name Src Zone Src Address Dst Address Services Action
No configuration normalized yet. Use the top bar to import a firewall config file.
Export / Convert Config
Import a config first to convert.

Cisco ASA Integration Guide

How to Export Config & NAT

To export the full configuration, including access lists and NAT policies:

enable show running-config

To extract NAT rules only separately:

show running-config nat

How to Import / Apply Rules & NAT

To apply new security rules or NAT rules, enter configuration terminal mode:

configure terminal ! Add access rules: access-list inside_in extended permit tcp any host 10.0.0.1 eq 80 ! Add Source/Destination NAT rules: nat (inside,outside) source dynamic Any interface

Check Point Integration Guide

How to Export Policy & NAT (Separate Steps)

In Check Point SmartConsole, security rules and address translation (NAT) rules exist in different layers and require separate exports:

Step 1: Export Security Rules:
1. Go to Security Policies > Access Control > Policy.
2. Click the Actions dropdown menu (gear icon in table grid top right) > Select Export to CSV....

Step 2: Export NAT Rules (Separate Tab):
1. Go to Security Policies > Access Control > NAT (located in the left sidebar menu directly below Policy).
2. Click the Actions dropdown menu on the NAT rule grid > Select Export to CSV... to retrieve the separate address translation matrix.

How to Import / Apply Rules & NAT

Use Gaia Management CLI (mgmt_cli) commands to apply security policies and NAT rules separately:

! Add Access Rules: mgmt_cli add access-rule layer "Network" position 1 name "Web_Access" source "Any" destination "WebServer" action "Accept" --port 19009 ! Add NAT Rules (Separate CLI command): mgmt_cli add nat-rule package "Standard" position 1 original-source "Any" translated-source "Translated_IP" method "dynamic" --port 19009

FortiGate Integration Guide

How to Export Config & NAT

To export access policies and custom Virtual IPs (Destination NAT) / Central SNAT tables:

show firewall policy show firewall vip show firewall central-snat-map

How to Import / Apply Rules & NAT

Paste the corresponding configuration blocks into your FortiOS terminal:

! Configure Destination NAT (Virtual IP): config firewall vip edit "Web_VIP" set extip 203.0.113.100 set mappedip 192.168.1.100 next end ! Configure Policy (with NAT enabled): config firewall policy edit 0 set srcintf "any" set dstintf "any" set srcaddr "all" set dstaddr "Web_VIP" set action accept set service "HTTP" set nat enable next end

Palo Alto Integration Guide

How to Export Config

To export the full XML configuration package containing address lists, groups, custom services, and security rules from PAN-OS:

1. Log in to the Palo Alto Networks Web GUI.
2. Navigate to Device > Setup > Operations.
3. Under the Configuration Management section, click Export named configuration snapshot.
4. Select running-config.xml or the active configuration file and click OK to download.

How to Import / Apply Rules

To import new rules or definitions, import the XML config snapshot under Device > Setup > Operations > Import named configuration snapshot, then click Commit.

Cisco FTD (FMC) Integration Guide

How to Export Config

To export Access Control policies from the Firepower Management Center (FMC) GUI:

1. Go to Policies > Access Control.
2. Hover over the policy you want to export and click the Export icon/button.
3. Choose the export package containing the security rulebases and save the exported file.

How to Import / Apply Rules

Import policies or objects through the FMC UI under Policies > Access Control > Import, or leverage the FMC REST API to dynamically write rules.