Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Sabi_Halevi
Participant

logs from $FWDIR/log

Jump to solution

Hi,

I Would like to know if the ".log" files in $FWDIR/log/ directory are encrypted?
The only way to view them in human-readable is via the smart-console?

How can I achieve CLI access to those logs for monitoring, what are my options to view audit-logs, blades logs(not from smart-console)?

For R80.40 & R81 there is an option with an API request, what are my options for the other versions?

 

Thanks!

 

 

0 Kudos
2 Solutions

Accepted Solutions
Kaspars_Zibarts
Authority
Authority

You may want to consider log export https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 

Else you can use fw log command to display logs directly from command line: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 

Short answer - log files aren't plain text format

View solution in original post

PhoneBoy
Admin
Admin

The log files are stored in a binary format.
In addition to fw log, there is the command CpLogFilePrint: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

There are no APIs for logs in prior releases.
You can use Log Exporter to export to a syslog server: https://community.checkpoint.com/t5/Management/Log-Exporter-guide/m-p/9035

View solution in original post

3 Replies
Kaspars_Zibarts
Authority
Authority

You may want to consider log export https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 

Else you can use fw log command to display logs directly from command line: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 

Short answer - log files aren't plain text format

View solution in original post

Sabi_Halevi
Participant

Many thanks!

0 Kudos
PhoneBoy
Admin
Admin

The log files are stored in a binary format.
In addition to fw log, there is the command CpLogFilePrint: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

There are no APIs for logs in prior releases.
You can use Log Exporter to export to a syslog server: https://community.checkpoint.com/t5/Management/Log-Exporter-guide/m-p/9035

View solution in original post