This answer is provided by Infinity AI Copilot and should be confirmed by reviewing official documentation in Support Center.
Currently, there isn't a direct command or API to retrieve security rule hit counts directly from a local gateway. The hit counts are typically aggregated and retrieved through the Check Point Management Server.
However, you can use the cpstat
command on the Management Server to get hit counts for a specific Security Gateway and save it to a file. Here's how you can do it:
- Connect to the command line on the Management Server.
- Log in to the Expert mode.
- Use the following command to get the hit count for a specific Security Gateway:
cpstat -h <IP Address of Security Gateway Object> blades > /var/log/HitCount_for_GW.txt
Replace <IP Address of Security Gateway Object>
with the actual IP address of your Security Gateway.
This method allows you to export the hit count data for a specific gateway, but it still requires access through the Management Server. If you need further assistance or have any other questions, feel free to ask!