Syslog Viewer PRO
To enable rapid analysis of syslog information, I developed a small Windows tool in C++ that allows filtered syslog data to be displayed in real time. It can be used for debugging Check Point products. It supports the standard syslog format and is therefore compatible with all other products that support syslog. It is intended for debugging and analyzing syslog information.
The tool provides the following functions:
-
While the tool is running, the syslog port 514 (UDP/TCP) is opened.
-
All syslog data, such as messages sent to this client, are displayed in real time.
-
It is possible to define syslog filters so that only information matching the filters is written to the log file.
-
Additionally, a display filter is available, which shows only the filtered information from the log data on the screen.
-
All filters can be combined using logical “AND” or “OR” operators.
-
For analysis purposes, log processing within the tool can be stopped and restarted.
Required steps:
-
Download the tool and run it with local administrator privileges. This is required to open port 514.
-
Configure syslog on the management server to send logs to the IP address of your workstation:
-
Open the management server object
-
Navigate to “Log → Export”
-
Create a new syslog object targeting the IP address of your workstation
-
If necessary, adjust the local desktop firewall to allow UDP/TCP traffic on port 514
Tool download link:
Syslog Viewer PRO 1.3 (Mobile App)
File hash SHA256:
768D57916BD9BB292BC2033619D49A356C583EEFCFD1F72A3ABD4B6B95CE572A
➜ CCSM Elite, CCME, CCTE ➜ www.checkpoint.tips
