Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Nick_Doropoulos
Advisor

Automatic deletion of logs

With regards to the automatic deletion of logs once a threshold has been reached...

 

logs.PNG

 

Is anybody aware of any documentation on what happens 'behind the scenes' so to speak for the above feature to work? I have found plenty of documentation online with regards to troubleshooting logging issues but very little with regards to the above feature. As such, does anybody know what the responsible components are (i.e. daemons, ports etc), what is the communication flow between the GW and the SMS etc.?

Thanks in advance.

4 Replies
PhoneBoy
Admin
Admin

This is only relevant to where logs are stored (i.e. the log server) and the logging process (fwd).
0 Kudos
Nick_Doropoulos
Advisor

Sorry, perhaps I didn't phrase my question correctly.

Is there any documentation that explains in detail as to how the mechanism responsible for automatically deleting logs once a threshold has been reached works (i.e. start deleting files once 50% of /var/log has been used)?

Thanks.

0 Kudos
HeikoAnkenbrand
Champion
Champion

@Nick_Doropoulos  your question:
CUT>>>

...anybody know what the responsible components are (i.e. daemons, ports etc),

<<<CUT

You can find a port overview in one of my articles:

R80.x Ports Used for Communication by Various Check Point Modules

and daemons in this sk:

sk97638 - Check Point Processes and Daemons

 

 

Igor_Plur
Explorer

See sk52421

Ports used by Check Point software

0 Kudos