Logging & Status Software Blade
Overview
The Logging and Status Software Blade provides comprehensive information on security activity through logs and a complete, visual picture of changes to gateways, tunnels, remote users, and security activities.
Check Point products provide you with the ability to collect comprehensive information on your network activity in the form of logs. You can use these logs to analyze your traffic patterns, troubleshoot networking and security issues, gather information for legal or audit purposes, and generate reports to analyze network traffic patterns.
The SmartCenter server makes these logs available for inspection via SmartView Tracker, a comprehensive auditing solution, enabling central management of both active and historical logs of all Check Point products. You can conveniently customize searches to address specific tracking needs; integrate the logs with Check Point's Reporting Software Blade or the SmartEvent Software Blade, export them to text files or to an external database, or use an OPSEC-certified third party solution.
Key Benefits
- Real-time visual tracking of all logged connections and administrator activity
- Predefined product log queries providefocused searches on what’s important
- Automatic log maintenance for easy management of volumes of data
- Secure management of sensitive data
Features
- Real-time visibility and troubleshooting
- Deployment flexibility
- Automatic log maintenance
- Tight integration
Real-time visibility and troubleshooting
SmartView Tracker provides real-time visual tracking of all logged connections and administrator activity. Administrators search for events of interest. These features dramatically reduce the time required to troubleshoot configuration errors.
Deployment flexibility
Logs can be stored locally on the Firewall Software Blades or on a remote Logging and Status Software Blade. The module sends logs to a Logging and Status Software Blade which collects and stores them. Deployment flexibility means that customers have full control of sensitive data and can size systems to match their particular logging capacity requirements.
Automatic log maintenance
Logs are automatically switched when reaching a configurable size and administrators have full management of switched log files to ensure disk space limits are not exceeded.
Tight integration
Through the secure OPSEC LEA API, the Logging and Status Software blade provides customers with a secure and flexible solution to managing the high volumes of data generated by firewalls, endpoint computers, and other enforcement points.
Specifications
| Feature | Details |
|---|---|
| Log format | As defined in the OPSEC LEA API |
| Packet capture | Available for IPS events |
| Log types | Connection, active, audit and others depending on product |
| Event notification types | Log, alert, SNMP trap, email, and user- defined script |
| Granular log options | Security policy rulebase globally for implied rules and other options |
| Secure log transport | Via the Check Point Secure Internal Infrastructure |
| Automatic log switching | Up to 2 GB (default), configurable |
| Log switch | Manual or automatic at a specific time or size |
| Log file maintenance | Maintain a free percentage of disk space, specify alerts to keep for specified days and run a user defined script |
| Backup log servers | Store locally or send to alternate log servers |
| Predefined and customizable log queries | Predefined by product |
| Customizable log filters | By log field |
| Remote log file management | Switch, view, and retrieve from Tracker |
| Default and user defined tools | Ping, whois and nslookup |
Support
Threats to the network are constantly evolving and becoming more sophisticated. To maintain continuity and productivity, defenses must advance as quickly to deliver the technology and features that protect the business. Check Point Update service protects against emerging threats with critical hot software fixes, service packs, and major software upgrades.
Benefits
- Ensures continuous security with access to critical hot fixes and service packs
- Maximizes ROI and investment with access to major upgrades and enhancements
- Increases security with the latest applications, features, and technologies
Next Steps
- Find a Partner
- Call US sales: 1-866-488-6691
- Contact Us Online
Resources
Check Point Software Blade Architecture Brochure- Software Blades Demo
- Software Blade Architecture White Paper
Software Blades
Security Management Software Blades