Depending on how you want to get the log data off, you can do it with a native
"conduit". For example Checkpoint uses OPSEC LEA API to allow you to move data. I
would recommend using a product like my company offers that does log correlation and
threat analysis. We interface with checkpoint via OPSEC which can be a secure
communications protocol and the interface is web based so you can view the logs from
anywhere.
Matthew F. Caldwell, CISSP
Chief Security Officer
GuardedNet, Inc.
http://www.guarded.net
-----Original Message-----
From: Dustin Howard [mailto:[EMAIL PROTECTED]]
Sent: Mon 5/20/2002 6:42 PM
To: [EMAIL PROTECTED]
Cc:
Subject: Good CP Log viewer
Anyone know of a good 3rd party viewer to view CheckPoint FW-1 logs? I
have a chron job every night to tar, then FTP my logs to a logging server.
I want the capability to have a viewer to view the logs without using CPU
and memory from the FW itself. Any thoughts?
