Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
LostBoY
Advisor

Verifying Syslog Integration

I have integrated my Checkpoint R80.40 Gateways with a syslog server... the team managing syslog server is reporting that they can see anti spoofing, NAT Translation logs being received but  not seeing any connection logs (Traffic Accept/Deny).... is there a way i can check what type of messages are being forwarded by the Gateways to the syslog server ?

 

I am using conventional mode of integration i.e. created a sylog server in Smartconsole Objects and forwarding logs from each gateway to the server.

Thanks

0 Kudos
5 Replies
Maik
Advisor

0 Kudos
LostBoY
Advisor

I tried with Log exporter first but the syslog server is not able to interpret the logs.. hence went with conventional logging
0 Kudos
PhoneBoy
Admin
Admin

Log Exporter is the canonical way to do this and supports multiple standard syslog formats.
Did you try all of them?
https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 

0 Kudos

Check System Management > System Logging in GAiA WebGUI - is your Syslogs IP added here under Remote System logging ?

CCSE CCTE CCSM SMB Specialist
0 Kudos
LostBoY
Advisor

I have added the syslog server ip via Smartconsole - Gatway Object - Logs - Send logs and alerts to these log servers - (added syslog server IP here)
0 Kudos