Working with Log Servers
A Domain Log Server
Dedicated Check Point server that runs Check Point software to store and process logs. is a dedicated host for Domain log files. A Multi-Domain Log Server Dedicated Check Point server that runs Check Point software to store and process logs in a Multi-Domain Security Management environment. The Multi-Domain Log Server consists of Domain Log Servers that store and process logs from Security Gateways that are managed by the corresponding Domain Management Servers. Acronym: MDLS. is a dedicated container for Domain Log Servers. Domain Log Servers also handle these log management activities:
-
Automatically start a new log file when an existing log file is larger than the specified maximum size
-
Log file backup and restoration
-
Export and import log files
-
Index logs for faster log queries.
It is a best practice to use Multi-Domain Log Servers and Domain Log Servers to handle logs for a Multi-Domain Security Management environment because of the large volume of logs.
To see the logs for a Domain and its Security Gateways, click Logs & Monitor in SmartConsole Check Point GUI application used to manage a Check Point environment - configure Security Policies, configure devices, monitor products and events, install updates, and so on. for that Domain. To see logs for all Domains in one view, click Logs & Monitor in the Multi-Domain Server Dedicated Check Point server that runs Check Point software to host virtual Security Management Servers called Domain Management Servers. Synonym: Multi-Domain Security Management Server. Acronym: MDS. SmartConsole. You can filter the logs for specified Security Gateways, Domain Management Servers Virtual Security Management Server that manages Security Gateways for one Domain, as part of a Multi-Domain Security Management environment. Acronym: DMS., or Domain Log Servers.