Use https://seceonhelp.freshdesk.com/support/login to access updated Knowledge Base Articles, Submit Technical Support Tickets and Review Status of submitted support tickets.

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this content. View the current version.

Compare with Current View Version History

Version 1 Next »

Check Point Log Exporter is an easy and secure method to export Check Point logs over syslog. Log Exporter is a multi-threaded daemon service which runs on a log server. Each log that is written on the log server is read by the Log Exporter daemon. It is then transformed into the applicable format and mapping and sent to the end target.

To export logs from Harmony Endpoint:

1-Go to Endpoint Settings > Export Events.

2-Click Add.

3-The New Logging Service window opens.

4-Fill in the export details:

  • Name - Enter a name for the exported information.

  • IP Address - Enter the IP Address of the CCE

  • Protocol - UDP.

  • Format - Select the export format

  • Port - 514

4-Click Add.

Note:

Now login on to the CCE and capture the PCAP with the help of the below command and share it with us.sudo tcpdump -i any port 514 and host <device_ip> -vw checkpoint.pcap.

  • No labels

Seceon Inc. All rights reserved. https://www.seceon.com