Skip navigation
Log in to follow, share, and participate in this community.

Recent Activity

Ed Gonzalez
We have a customer with the older generation security manager with unlimited gateway license. They want to add SmartEvent which is the new generation "NGSM" license.  Has anyone validated if these license can co-exist on the same manager? I doubt the customer will want to give up their unlimited license.
Heiko Ankenbrand
Via Check Point Support you get a Syslog exporter for SIEM applications for R80.10 Managment. Which allows an easy and secure method for exporting CP logs over syslog. Exporting can be done in few standard protocols and formats. Log Exporter supports: Splunk Arcsight RSA LogRhythm QRadar McAfee Log Exporter is a multi-threaded daemon… (Show more)
Charlie Dobson
Hello all,   I am trying to run an application and URL filtering report from last month (which just happens to be "last year").  I specify a custom date range of 12/1/2018 to 12/15/2018 with this query:    product:("Application Control" OR "URL Filtering") AND NOT action:"Redirect" AND type:("Log" OR "Alert" OR "Session") AND NOT… (Show more)
Hugo van der Kooij
I am trying to build a parser for the Barracuda Email Security Gateway.   The first order of business is to know what I should use as Product Name. In the R80.20 log I can select as filter blade:"Anti-Spam and Email Security" but I am not sure what the equivalent is for the Eventia Log Parsing Editor.   Then I am trying to figure out which… (Show more)
Danilo Lara
Hello! I'm testing R80.10 in my lab and I noticed that the Status of the gateways and servers are unavailable. In R80 it's working fine. In all Columns (General, Health, Traffic, etc) there is no information. It shows a "Machine Status is not available" message. See the screenshot. Any tip on how to solve this?   Thanks!
yongjun jin
Hello.   I am trying to find fw log format in order to parsing.   I got logs but I don't know each field meaning.   also accept log and drop log are different.( field )   [Expert@gw-18ee86:0]# fw log -n -p -c accept Date: Jan 16, 2019 8:07:08 5 N/A 1 accept 172.31.6.61 > N/A LogId: <max_null>; ContextNum: <max_null>; OriginSicName:… (Show more)
yongjun jin
Hello. I would like to find specific traffic log by using CLI ( for example src IP, dst IP, dst Port, time...)   I found command 'fw log' but I can't use filter. ( also I have to use AND condition)   I tried to use grep command and pipe command. It did not work.   gw-18ee86> fw log -n -h Missing origin Usage: fw log [-f|-t] [-x start_pos] [-y… (Show more)
Dinesh Buddha
In splunk, some endpoint logs shows the action as deferred where index is checkpoint, what dos it mean? i am new to this security profile.
Hugo van der Kooij
Just curious how you all think about this.   In the past you could create ACL's for some routers base on the policy. But I haven't seen that lately.   But what I I would like as feature is to create policies for 3rd party devices from my Check Point management. Anyone done anything in this regard?    As we can handle Syslog traffic from other… (Show more)
Load more items