We use our FWSM as our exterior/interior firewall. We would now like to redesign the newtrok and make the FWSM as interior only and the ASA as our exterior handling all inbound traffic from the public. Could anyone shed some light on the does and don't of converting from FWSM to the ASA... Our ACL is very long and I would love to reduce it but first is there a converting tool that Cisco provides.... Thanks for the help !!!
There are some areas of the configuration that simply cant be ported because of platform differences, while others are identical. For example, interface configurations are fundamentally different, while ACLs and route statements will be identical. Also, a big factor in converting configs would be source and dest versions (a 2.x FWSM conf is a lot farther from an ASA conf than a 3.x FWSM conf).
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...