We have integrated ArcSight Syslog with Checkpoint R80.10 with JHF_Take_46 as per
sk109016, sk115392, sk121334
$FWDIR/state/SEAM/local.cplogtosyslog_policy.C is configured correctly.
For 2 days, ArcSight was receiving the logs. But stopped.
With "cpwd_admin list" - CPLogToSyslog process getting Terminated and tried restarting as well but no luck.
Took CPLogToSyslog debug as well, but all it states that UDP succeeded for ArcSight IP in 514 port.
Fwm.elg as well with no clue.
Any help to see why CPLogToSyslog process getting Terminated constantly.
(No drops as well Firewall during restart of CPLogToSyslog process or with ArcSight IP)