Share your strategy with the Crowd!
Hello!
While SmartView Tracker is the standard log tracking solution, you may also wish to use your logs in other ways that are specific to your organization. For that purpose, Check Point products provide you with the option to export log files to the appropriate destination.
A log file can be exported in two different ways:
- As a simple text file
- In a database format, exported to an external Oracle database
SmartView Tracker supports a basic export operation, in which the display is copied as-is into a text file. More advanced export operations (for example, exporting the whole log file or exporting logs online) are performed using the command line (using the fwm logexport, log_export and fw log commands).
Remember that the logs are not stored locally on the firewall unless something is wrong, so the export needs to happen from the management or log server.
Here is one article with a HOWTO submitted to Indeni in the past:
https://indeni.com/how-to-automate-the-export-multiple-check-point-log-files-into-a-readable-format/