Likelihood to Recommend Unless you are rebuilding rules from scratch, FortiConverter is a must-have when migrating legacy rulesets from competing platforms such as
Cisco ASA , CheckPoint, Juniper, etc. to FortiGate Appliances. Without FortiConverter, guaranteed there will be some flows you missed and you will be troubleshooting them during your cutover maintenance window. Utilizing FortiConverter, you will minimize such issues as cutover time because you have the ability to stage the new ruleset in advance. Complex topologies and multi-platform migrations require highly skilled consultation from experts that [have] done this several times before.
Read full review Database Migrations on Java-based solutions. It has one of the best integrations with it as a database migration tool, you can do it with the community edition (no pricing involved) and it works flawlessly with Maven and Gradle. It's not an expensive tool in order to use the next level of features and is worth the money. I would recommend reaching that edition level as the object mapping feature gets really handy. I would not recommend it for any Microsoft-based solution (.Net) as is not compatible at all based on my experience, this is a tool only worth it with Java applications.
Read full review Pros Audit existing rulesets from CheckPoint, Cisco, Juniper and other platforms Build migration rulesets to FortiGate Stages migration before actual cutover Reduces or eliminates obsolete and shadow rules Simple logic Read full review Supports many databases Community version uses Apache license Widely used, good community support Read full review Cons Programming or scripting skills are not needed but highly recommended Requires excellent command of REGEX Interface Mapping from complex topologies requires a deep understanding of FortiGate interface capabilities and scripting Read full review GUI could be more user friendly Applying patch scripts on a blank DB differs from on a DB with data, so the migration could still fail when all tests passed Configurations options could be more flexible / powerful Read full review Likelihood to Renew FortiConverter is currently the best option to assist in migrating legacy firewalls to FortiGate firewalls. FortiConverter is flexible enough to be the single tool to use when migrating Check Point,
Cisco ASA , Juniper and other platforms to FortiGate Firewalls. FortiConverter is not a multi-user software however it is easy for multiple engineers to work on a single or multiple migration projects.
Read full review Alternatives Considered FortiConverter is the easiest of the firewall migration tools to use compared to Checkpoint SmartMove, Cisco Firewall Migration Tool, FWMIG, etc. It has a more robust user interface and allows you to customize the rule imports as needed. Rulebase analysis, hit count, NAT, and dynamic routing are presented in an easy to understand format with FortiConverter.
Read full review The problem with a cloud-based tool for migration services is the cloud dependency. You are restricted to use the tool along the Cloud provider. Flyway gives you the freedom to use it in any scenario as long as you are working with a compatible database engine. Even if you are working on-premise and you don't have plans to move to a cloud architecture. Or even for sandbox development scenarios where you are a developer playing around with some project ideas. And you don't have to pay anything as long as you need advanced features, and not less importantly, you are using an open-source tool.
Read full review Return on Investment Streamlined migrations successful on the first try Simple and fast cutover maintenance window Audit and tune existing rule base Quickly identify shadow rules Quickly identify rules with elevated access Read full review Reduced our effort for release processes. Easy to setup - less than 5 minutes. Improve reliability of our databases. Easy backup and version control. Read full review ScreenShots