×
all 4 comments

[–]FuzzybunnyofdoomI like graphs 1 point2 points  (1 child)

I was able to convert the exp file to a text readable format, but the names and structure of the file is so convoluted that it's impossible to use as a reference as I re-build.

I had the same issue when I had to rebuild some configs and attempted the same thing. I gave up on the text config diffing. You might have some luck with CLI get commands for objects, but honestly doing it via the GUI is probably going to end up being faster unless you have a ton of units to upgrade/convert and you can justify investing the effort into creating a more automated process.

I'd normally delete all unreferenced objects, and any NAT or Access rules without any traffic hits first. Then I'd look over the configs/objects/rules for: Interface, Address Objects, Service Objects, Routes, NAT, Access Rules, Log Settings, Admin settings, and finally User/LDAP config. After that I'd dive into the security suite and look over any App-Rules, IDS, GAV, etc policies they might have. Most of the time, all of the security suite was just enabled without any customization.

Unless you have a really convoluted setup, manually going through the GUI isn't that time consuming.

[–]Clear-Disk_-Number_1[S] 0 points1 point  (0 children)

I pulled the config via ssh and, if printed, it would be nearly 800 pages. And that is with me cleaning it up. The EXP file is even longer.

When I was reviewing it earlier, I noticed a lot of un-referenced items and zero hits. This is with a gross amount of up time so I'm certain it will be safe to refer to each as unused.

The config is convoluted but GUI looks like my best shot. yay...

Thanks for your input!

[–]zachpulsNetwork Engineer 0 points1 point  (1 child)

I wrote a tool a while back to back-up the configs to all of our deployed SonicWALLs to a cloud service. It parsed the EXP and put it in a more IOS-like syntax (text file).

Let me see if I can find the code. Of course, it still lies with my previous employer, so I give it a 50/50 chance as to whether I can recover it or not.

[–]Luz3rCompTIA A+ 1 point2 points  (0 children)

I wold be interested in the tool too.