Create a Post
Showing results for 
Search instead for 
Did you mean: 

Automatic deletion of logs

With regards to the automatic deletion of logs once a threshold has been reached...




Is anybody aware of any documentation on what happens 'behind the scenes' so to speak for the above feature to work? I have found plenty of documentation online with regards to troubleshooting logging issues but very little with regards to the above feature. As such, does anybody know what the responsible components are (i.e. daemons, ports etc), what is the communication flow between the GW and the SMS etc.?

Thanks in advance.

4 Replies

This is only relevant to where logs are stored (i.e. the log server) and the logging process (fwd).
0 Kudos

Sorry, perhaps I didn't phrase my question correctly.

Is there any documentation that explains in detail as to how the mechanism responsible for automatically deleting logs once a threshold has been reached works (i.e. start deleting files once 50% of /var/log has been used)?


0 Kudos

@Nick_Doropoulos  your question:

...anybody know what the responsible components are (i.e. daemons, ports etc),


You can find a port overview in one of my articles:

R80.x Ports Used for Communication by Various Check Point Modules

and daemons in this sk:

sk97638 - Check Point Processes and Daemons




See sk52421

Ports used by Check Point software

0 Kudos