One of the feature is to get a copy of logs using the LEA protocol. To export the logs to an external log management solution, Check Point has developed the OPSEC framework which allows third party applications to interact with firewalls. By default, logs generated by the firewall modules are sent to the management system (the “ SmartCenter“) where they can be reviewed using a powerful fat client but… running only on top of Microsoft Windows systems. But why Check Point? Usually, I don’t blog about commercial products but I investigated a request from a customer who was looking for a clean solution to integrate this product logs into ELK and I didn’t find my  he art’s desire  on the InternetĬheck Point firewalls are good products amongst others but what I really like is the way they handle logs. Google is your best friend to find information about ELK. ELK is based on three core components: ElasticSearch, Logstash and Kibana. For a while, this log management framework is gaining more and more popularity. Here is a quick how-to about the integration of Check Point firewall logs into ELK. It has been a while that I did not write an article on log management.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |