Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
viveky
Explorer

By default search query in Smart Console

Is there any by a default search query for logs in Smart Console using ip-address(src name, dst name,host-name) according to these fields.!

0 Kudos
6 Replies
Chris_Atkinson
Employee Employee
Employee

Refer sk166092.

Also are you already using the favourites option for saved queries?

CCSM R77/R80/ELITE
0 Kudos
viveky
Explorer

no i'm not using any fav options

0 Kudos
Chris_Atkinson
Employee Employee
Employee

How about: Logs View -> Tools -> Query Settings 

CCSM R77/R80/ELITE
0 Kudos
viveky
Explorer

yes..i need this custom default query according to ip-address like source and destination 

0 Kudos
Chris_Atkinson
Employee Employee
Employee

Simple example:

(src:10.10.10.10 AND dst:142.250.66.196 AND resource:www.google.com)

Others fields that may also be useful here amongst others are:

dst_domain_name:
tls_server_host_name:

 

test.png

CCSM R77/R80/ELITE
0 Kudos
PhoneBoy
Admin
Admin

You can set it for a specific user in their installation of SmartConsole as Chris mentioned here: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 
You can also enforce a specific query using SmartView as described here: https://community.checkpoint.com/t5/Management/Limited-Permission-Profile/m-p/32868/thread-id/21934#...

 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events