This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Alexander_Konon
Contributor
‎2020-09-25 12:54 AM

HTTPS Inspection logs rotation

Hello dear experts.

We are trying collect information about used version of encryption protocols like as ssl/tls using debug for WSTLSD (sk105559).

But debug allows you to save log files with a maximum of 20 MB and no more than 9 pieces. Is it possible to increase the size of debug files and their number?

0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2020-09-27 09:04 PM

The debug logs were not meant to be run long term like this.
Is this information not in the regular access logs?

0 Kudos
Alexander_Konon
Contributor
‎2020-09-28 01:35 AM
In response to PhoneBoy

Hello. 

Yes, information about used encryption protocols and cipher suite collected only if we make debug for WSTLSD.

0 Kudos
Alexander_Konon
Contributor
‎2020-09-28 07:20 AM
In response to PhoneBoy

Hello! If you know another method how to collect information about used encryption protocols and cipher suite, please share....

0 Kudos
Alexander_Konon
Contributor
‎2020-09-30 08:52 AM

Good evening.

I will try to describe our task in more detail. Our infrastructure has a fairly large number of web services available through https. We would like to disable legacy encryption protocols and cipher suites, but we are not sure if all clients will be able to continue using these services. Therefore, we would like to first collect statistics on the used encryption protocols and cipher suites. And since we use SSL inspection on the checkpoint gateway, we want to collect this information on the gateway. Maybe you know how else we can collect this information other than when debugging the wstlsd.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top