cyberlabs.us | home | subscribe | contact | admin
Monday, July 7th  
| comments  
Log Exporter - Check Point Log Export

Log Exporter - Check Point Log Export
Informational

It seem like every time I upgrade my Check Point SMS, I have to reconfigure the Log Exporter, hence, I have to remember this command:

cp_log_export add name "name" domain-server "domain-server" target-server "target-server IP/host name" target-port "target-port" protocol "udp|tcp" format "syslog|cef|splunk|logrhythm|generic" [optional arguments]


Internal Commands:

add - Deploy a new Check Point Log Exporter.

delete - Remove an exporter.

reexport - Reset the current position and reexport all logs per the configuration.

restart - Restart an exporter process.

set - Update an existing exporter's configuration.

show - Print an exporter's current configuration.

start - Start an exporter process.

status - Show an exporter's overview status.

stop - Stop an exporter process.


Parameters:

apply-now - Applying any change that was done immediately.

ca-cert - Full path to the CA certificate file *.pem. Applicable only when the value of the "encrypted" argument is "true".

client-cert - Full path to the client certificate *.p12. Applicable only when the value of the "encrypted" argument is "true".

client-secret - The challenge phrase used to create the client certificate *.p12. Applicable only when the value of the "encrypted" argument is "true".

domain-server - The name or IP address of the applicable Domain Management Server.

enabled - Allow the Log Exporter to start when you run the cpstart or mdsstart command.

encrypted - Use TSL (SSL) encryption to export the logs.

export-attachment-link - Add a field to the exported log that represents a link to SmartView that shows the log card and automatically opens the attachment.

export-link - Add a field to the exported log that represents a link to SmartView that shows the log card.

export-link-ip - Make the links to SmartView use a custom IP address (for example, for a Log Server behind NAT).

format - The format, in which the logs are exported.

name - Unique name of the exporter configuration.

protocol - Transport protocol to use, "tcp|udp".

target-port - The port on the target server, to which you export the logs.

target-server - The IP address of the target server, to which you export the logs.
cyberlabs.us | home | subscribe | contact | admin