Export logs via Syslog

From Tech-Wiki

Revision as of 16:18, 3 February 2019 by Fabricio.Lima (Talk | contribs) (Created page with "Category:Check Point '''Back to Gaia''' Forwarding Traffic Logs stored on the Management Server to Syslog Server 1. Add the below lines in the /etc/...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Jump to: navigation, search

Back to Gaia

Forwarding Traffic Logs stored on the Management Server to Syslog Server

1. Add the below lines in the /etc/rc.d/init.d/cpboot file.

fw log -f -t -n -l 2> /dev/null | awk ‘NF’ | sed ‘/^$/d’ | logger -p local4.info -t CP_FireWall &

2. After this we are able to see the firewall logs in the /var/log/message directory in addition to the original firewall logs as well.

3. Now, send these messages to remote syslog server. Configure the following in clash:

> add syslog log-remote-address <IP-address_of_Syslog_Server> level info

Retrieved from ‘http://tech-wiki.net/index.php?title=Export_logs_via_Syslog&oldid=1275’

Check Point

Navigation menu