Check Point Logging & Status Software Blade
The Check Point Logging & Status Software Blade provides real-time visibility regarding security status and activities through log tracking and provides a complete visual picture of changes to gateways, tunnels and remote users.
Real-time visibility of security status; reduced troubleshooting time
- Real-time security logging of all connections and administrator activity
- Flexible control of the location and size of log storage
- Integrates with third-party security logging solutions via OPSEC LEA API
Easy reporting and analysis of traffic patterns and security issues
- Predefined product log queries provide focused searches on what’s important
- Automatic log maintenance for easy management of volumes of data
- Allows administrators to quickly gather data for legal or audit purposes
Integrated into Check Point Software Blade Architecture
- Enable activity logging on any Check Point Security Management server
- Supported on any Check Point Appliance or open server
Real-Time Visibility and Troubleshooting
SmartView Tracker provides real-time log tracking of all logged connections and administrator activity. Administrators search for events of interest. These features dramatically reduce the time required to troubleshoot configuration errors.
SmartView Tracker provides real-time log tracking of all logged connections and administrator activity. Administrators search for events of interest. These features dramatically reduce the time required to troubleshoot configuration errors
Deployment Flexibility
Logs can be stored locally or on dedicated log servers. Check Point devices send logs to a Security Management server which collects and stores them. Deployment flexibility means that customers have full control of sensitive data and can size systems to match their particular logging capacity requirements.
Logs can be stored locally or on dedicated log servers. Check Point devices send logs to a Security Management server which collects and stores them. Deployment flexibility means that customers have full control of sensitive data and can size systems to match their particular logging capacity requirements.
Automatic Log Maintenance
Logs are automatically switched when reaching a configurable size and administrators have full management of switched log files to ensure disk space limits are not exceeded.
Logs are automatically switched when reaching a configurable size and administrators have full management of switched log files to ensure disk space limits are not exceeded.
Tight Integration with Third-Party Security Logging Solutions
Through the secure OPSEC LEA API, the Logging and Status Software Blade provides customers with a secure and flexible solution to managing the high volumes of data generated by firewalls, endpoint computers and other enforcement points.
Through the secure OPSEC LEA API, the Logging and Status Software Blade provides customers with a secure and flexible solution to managing the high volumes of data generated by firewalls, endpoint computers and other enforcement points.
Integrated into Check Point Software Blade Architecture
The Logging & Status Software Blade is integrated into the Software Blade Architecture. It can be easily and rapidly activated on existing Check Point Security Gateways and Management Servers saving time and reducing costs by leveraging existing security infrastructure.
The Logging & Status Software Blade is integrated into the Software Blade Architecture. It can be easily and rapidly activated on existing Check Point Security Gateways and Management Servers saving time and reducing costs by leveraging existing security infrastructure.
Full integration into the modular Software Blade Architecture allows for rapid and easy activation on any Check Point security gateway.
Software Blade Specifications
| Feature | Details |
|---|---|
| Log format | As defined in the OPSEC LEA API |
| Packet capture | Available for IPS events |
| Log types | Connection, active, audit and others depending on product |
| Event notification types | Log, alert, SNMP trap, email, and user- defined script |
| Granular log options | Security policy rulebase globally for implied rules and other options |
| Secure log transport | Via the Check Point Secure Internal Infrastructure |
| Automatic log switching | Up to 2 GB (default), configurable |
| Log switch | Manual or automatic at a specific time or size |
| Log file maintenance | Maintain a free percentage of disk space, specify alerts to keep for specified days and run a user defined script |
| Backup log servers | Store locally or send to alternate log servers |
| Predefined and customizable log queries | Predefined by product |
| Customizable log filters | By log field |
| Remote log file management | Switch, view, and retrieve from Tracker |
| Default and user defined tools | Ping, whois and nslookup |
- Products A-Z
- Appliances
- Appliances Overview
- 2200 Appliances
- 4000 Appliances
- 12000 Appliances
- 21400 Appliance
- 61000 Security System
- SecurityPower
- Power-1
- UTM-1
- Series 80
- UTM-1 Edge
- IP Appliances
- VSX-1
- DLP-1
- IPS-1
- Safe@Office
- Smart-1
- Smart-1 SmartEvent
- Integrated Appliance Solution
- IAS Bladed Hardware
- Software Blades
- Software Blades Overview
- Security Gateway
- Firewall
- IPSec VPN
- IPS
- Mobile Access
- Application Control
- Identity Awareness
- DLP
- Web Security
- URL Filtering
- Anti-Bot
- Antivirus & Anti-Malware
- Anti-Spam & Email Security
- Advanced Networking & Clustering
- Voice over IP (VoIP)
- Security Management
- Network Policy Management
- Endpoint Policy Management
- Logging & Status
- SmartWorkflow
- Monitoring
- Management Portal
- User Directory
- SmartProvisioning
- SmartReporter
- SmartEvent
- Multi-Domain Security Management
- Virtualization Security
- Security Gateway Virtual Edition
- Cloud Security
- Virtual Appliance for Amazon Web Services
- Security Systems
- Security Systems Overview
- Endpoint Security
- Endpoint Security
- Full Disk Encryption
- Media Encryption
- Anti-Malware & Program Control
- Remote Access VPN
- Firewall & Compliance
- Check Point WebCheck
- Check Point GO
- Solutions
- Remote Access
- Consumer Products
- ZoneAlarm Antivirus
- ZoneAlarm ForceField
- ZoneAlarm Internet Security Suite