https://community.checkpoint.com/t5/Firewall-and-Security-Management/Checkpoint-parameter-monitoring-Log-File-Path/m-p/234969#M45563 <P>Hello everyone,</P><P>Product: OpenServer 16vcores - R81.20 take 89 - Distributed</P><P>The purpose of this question is to monitor the performance of the Checkpoint Cluster&nbsp;in case the parameters in this cluster pair suddenly become overloaded,&nbsp;so we can take precautions when the system shows signs of abnormality.</P><P>I wanted to ask does the log in checkpoint can have CPU Usage, RAM, Disk, Bandwidth interfaces, System Uptime? So we can use the SIEM monitor that log =&gt; alert.&nbsp;</P><P>I already using those paths to collect the file if it is created for case high CPU:</P><DIV>/var/log/spike_detective/</DIV><DIV>/var/log/crash,</DIV><DIV>/var/log/dump/usermode</DIV><DIV>/var/log/message*</DIV><DIV>&nbsp;</DIV><DIV>Is there any other file path I can collect for this monitor?</DIV><DIV>&nbsp;</DIV><DIV>If anyone facing this problem before or have any document about this, please share for me.</DIV><DIV>&nbsp;</DIV><DIV>Thank you so much.</DIV><DIV>&nbsp;</DIV><DIV>Best Regards,&nbsp;</DIV><DIV>Kha</DIV><DIV>&nbsp;</DIV><DIV>&nbsp;</DIV> Fri, 06 Dec 2024 22:22:24 GMT Mk_83 2024-12-06T22:22:24Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Checkpoint-parameter-monitoring-Log-File-Path/m-p/234969#M45563 <P>Hello everyone,</P><P>Product: OpenServer 16vcores - R81.20 take 89 - Distributed</P><P>The purpose of this question is to monitor the performance of the Checkpoint Cluster&nbsp;in case the parameters in this cluster pair suddenly become overloaded,&nbsp;so we can take precautions when the system shows signs of abnormality.</P><P>I wanted to ask does the log in checkpoint can have CPU Usage, RAM, Disk, Bandwidth interfaces, System Uptime? So we can use the SIEM monitor that log =&gt; alert.&nbsp;</P><P>I already using those paths to collect the file if it is created for case high CPU:</P><DIV>/var/log/spike_detective/</DIV><DIV>/var/log/crash,</DIV><DIV>/var/log/dump/usermode</DIV><DIV>/var/log/message*</DIV><DIV>&nbsp;</DIV><DIV>Is there any other file path I can collect for this monitor?</DIV><DIV>&nbsp;</DIV><DIV>If anyone facing this problem before or have any document about this, please share for me.</DIV><DIV>&nbsp;</DIV><DIV>Thank you so much.</DIV><DIV>&nbsp;</DIV><DIV>Best Regards,&nbsp;</DIV><DIV>Kha</DIV><DIV>&nbsp;</DIV><DIV>&nbsp;</DIV> Fri, 06 Dec 2024 22:22:24 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Checkpoint-parameter-monitoring-Log-File-Path/m-p/234969#M45563 Mk_83 2024-12-06T22:22:24Z https://community.checkpoint.com/t5/Firewall-and-Security-Management/Checkpoint-parameter-monitoring-Log-File-Path/m-p/234973#M45565 <P>We don't necessarily write this in plainly readable log files.<BR />We do track overall system health in cpview:&nbsp;<A href="https://support.checkpoint.com/results/sk/sk101878" target="_blank">https://support.checkpoint.com/results/sk/sk101878</A><BR />You may also want to use Skyline to stream relevant data via OpenTelemetry:&nbsp;<A href="https://support.checkpoint.com/results/sk/sk178566" target="_blank">https://support.checkpoint.com/results/sk/sk178566</A><BR />See also HCP:&nbsp;<A href="https://support.checkpoint.com/results/sk/sk171436" target="_blank">https://support.checkpoint.com/results/sk/sk171436</A>&nbsp;</P> Fri, 06 Dec 2024 23:43:23 GMT https://community.checkpoint.com/t5/Firewall-and-Security-Management/Checkpoint-parameter-monitoring-Log-File-Path/m-p/234973#M45565 PhoneBoy 2024-12-06T23:43:23Z