Patrick,
>I have 1 enforcement point and a separate single management station.
>Everything works as expected but the tracker does not display logs from
>the enforcement point. I have a routing firewall in between and I see
>the traffic from the EP headed toward the MS on port 257 with
>regularity. When I use the dashboard to fetch the logs from EP, I get a
>failure. when I go to the console of the MS, issue fw fetchlog machine
>they come right across and I can view them just fine. when I run
>netstat, I see port 257 on localhost open but not for the ip address of
>the MS.
>I was hoping to see the log entries show in the tracker.
>What can I change to get the log entries to display in 'real time' in
>the tracker on the MS?
I am a bit confused about your posting. Note the following:
1. You seem to have a distributed environment, meaning that
you have an EP (Enforcement Point) and a MS (Management Station)
2. During normal operation the EP sends it's log files to the MS
3. When connecting with the Smart DashBoard, the GUI connects to
the MS and reads the log file from there. Not from the EP
What you need to check:
1. with netstat -an on both the EP and the MS, do you see a socket
in the established state between the EP and the MS?
2. what does you $FWDIR/conf/msaters file contain on the EP?
3. Does the size of the $FWDIR/log/fw.log file increase on the MS?
Hope this clarifies a bit the logging mechanism.
Met vriendelijke groeten - Bien � vous - Kind regards
Guy ROELANDTS
EMEA HPS Internet Expertise Centre - CCSE-NG
Hewlett-Packard Belgium B.V.B.A./S.P.R.L.
E-mail : [EMAIL PROTECTED]
Tel: +32(02)729.85.61
Fax: +32(02)729.77.65
==========================================================
This message may contain confidential and/or proprietary information,
and is intended only for the person/entity to whom it was originally
addressed. The content of this message may contain private views and
opinions which do not constitute a formal disclosure or commitment
unless specifically stated. Should you receive this message by mistake
please inform the sender immediately.
==========================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
