Skip navigation
Log in to follow, share, and participate in this community.

Recent Activity

Tom Coussement
I know the inspection points "i", "I", "o" & "O" Now I see for example eth2:e and eth2:E in fw monitor output Is this voor incomming and outgoing encrypted traffic? Can't find it in documentation...
Dan Zada
Hello all,   I’m happy to announce about a new Splunk app for Check Point logs. Check Point brings you an advanced and real-time threat analysis and reporting tool for Splunk. The Check Point App for Splunk allows you to respond to security risks immediately and gain network true insights. You can collect and analyze millions of logs from all… (Show more)
Luca Fabbri
Click to view contentHello, we have an Open Server with Check Point R80.10 ClusterXL (two nodes) with these enabled blades: IPSec VPN, Mobile Access, Application Control, URL Filtering, IPS, Anti-Virus, Identity Awareness, Monitoring. The server has 16 CPUs but was licensed for 3.   Sometimes/randomly it happens the active node freezes; the console (SSH) becomes… (Show more)
Michael Horne
Click to view contentHello,   I  have been looking for information about how the reverse DNS lookup works for the "logs" in R80.10.  The issue we have is that the FQDN being displayed in the Logs is incorrect. In the log view ZRH-L00053" is displayed for the IP     When we check the DNS on the management server the host ZRH-D00008 is the actual… (Show more)
Phillip Runner
Is there any way that I can create a log exporter instance and have it filter out all logs except 'Alert' and 'Control' messages?  I'd only like the 'Alert' and 'Control' type forwarded to a central place for troubleshooting.
Dameon Welch-Abernathy
Click to view contentSmartView was added to R80, but was not enabled by default. In R80.10, it is enabled by default and can be reached by https://management-ip/smartview/ You log in using your SmartConsole credentials. From here, you can view the logs and see reports without using SmartConsole.  
Jeff Richterkessing
I am running SmartEvent on a dedicated VM running R80.10, it is picking up millions of FW logs a day from my numerous F5s that have HTTP health probes using non-standard ports, I tried adding the addresses to the Global Exclusions list but I keep getting hits on them, is there a way to filter them out of SmartEvent in R80? In the R77 version I… (Show more)
Keld Norman
Click to view contentHere is a small guide on how to add a new disk >2 TB to your firewall and expand the size of /var/log Check for if we are running a 64 bit kernel (it is needed for handling >2TB disk sizes) [Expert@firewall:0]# uname -a Linux firewall 2.6.18-92cpx86_64 #1 SMP Sun Jan 21 10:26:26 IST 2018 x86_64 x86_64 x86_64 GNU/Linux   List the disks..  … (Show more)
Yonatan Philip
Hello All,   We have recently released the Log Exporter solution. A few posts have already gone up and the full documentation can be found at sk122323. However, I've received a few questions both on and offline and decided to create a sort of log exporter guide.   But before I begin I’d like to point out that I’m not a Checkpoint spokesperson, nor… (Show more)
Load more items