Set Export Filter using cp_log_export

CheckMates Fest 2025!
Join the Biggest Event of the Year!

Share your Cyber Security Insights
On-Stage at CPX 2025

Learn More

Simplifying Zero Trust Security
with Infinity Identity!

Watch Now

Zero Trust Implementation
Help us with the Short-Term Roadmap

Take the Survey

CheckMates Go:
What's New in R82

LISTEN NOW

Create a Post

Hello all,

I am trying to fiter only specific blades from our Firewalls rather than the whole blade family.

I am trying to filter just these ones:

VPN-1 & FireWall-1
Application Control
SmartDefense
New Anti Virus
Anti Malware
URL Filtering

The problem I have with this is CheckPoint's SK article doesn't have anything that says if this is possible. So I know for a fact that the ones that I listed above belong to different blade families:

Access - For exporting Access logs only (Security Gateway/Management, VPN-1 & FireWall-1, Firewall, Application Control, URL Filtering, Content Awareness, Connectra, Mobile Access, Compliance blade, Core, DDoS Protector, Identity Awareness, Identity Logging, UA WebAccess).
TP - For exporting Threat Prevention logs only (Anti-Bot, Anti-Malware, Threat Emulation, IPS, IPS-1, SmartDefense, Anti-Virus, New Anti-Virus, Anti-Spam and Email Security, Threat Extraction, MTA).
EndPoint - For exporting Endpoint logs only (Anti-Bot, Anti Malware, Threat Emulation, IPS, IPS-1, SmartDefense, Anti-Virus, New Anti-Virus, Anti-Spam and Email Security, Threat Extraction, MTA ).
Mobile - For exporting Mobile logs only (WIFI Network, Mobile App, OS Exploits, Device, Network Security, Cellular Network, Network Access, iOS Profiles, Text Message, On-device Network Protection).

Would it be possible for me to do something like :

cp_log_export set name <name> filter-blade-in "VPN-1 & FireWall-1","Application Control","SmartDefense","New Anti-Virus","Anti Malware","URL Filtering"

Many Thanks,

Judy