Log Server Distribution (asg_log_servers)
Description
In SmartConsole
Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on., you can configure multiple Log Servers for each Security Gateway Dedicated Check Point server that runs Check Point software to inspect traffic and enforce Security Policies for connected network resources. object.
In this environment, the Security Gateway sends its logs to all of its configured Log Servers.
Each Security Group A logical group of Security Gateway Modules that provides Active/Active cluster functionality. A Security Group can contain one or more Security Gateway Modules. Security Groups work separately and independently from each other. To the production networks, a Security Group appears a single Security Gateway. Member sends its logs to all Log Servers in the configuration.
To reduce the load on the Log Servers, enable the distribution of different Log Servers to different Security Groups.
When enabled, each Security Group Member sends its logs to one Log Server Dedicated Check Point server that runs Check Point software to store and process logs. only.
|
|
Note - You cannot configure the Security Group Member to send its logs to a specific Log Server. Distribution is automatic. The Security Group automatically decides which Log Server is assigned to which Security Group Member. |
Syntax
Run this command in Gaia gClish The name of the global command line shell in Check Point Gaia operating system for Security Gateway Modules. Commands you run in this shell apply to all Security Gateway Module in the Security Group. or the Expert mode.
|
|
Example
If Log Servers Distribution is already enabled, the command shows which Log Servers are assigned to each Security Group Member: