How do I export Check Point log files?


This article applies to:

  • Security Reporting Center 2.x
  • WebTrends Firewall Suite 4.x
  • Check Point Firewall-1
  • Check Point NG

Question:

How do I export Check Point log files?

Symptoms:

  • Unable to analyze Check Point exported log files.

Procedure:

To export Check Point FW-1 log files, follow these steps.

  1. From the machine on which the firewall is installed, access a command prompt.

  2. Change to the directory where the fw.exe file is located.

  3. Enter the following text to export the fw.log log files.

    fw logexport -d ; -i fw.log -o[log_path]\fw.log

  4. Enter the following text to export the fw.alog log files.

    fw logexport -d ; i fw.alog -o [log_path]\fw.alog

 

To export Check Point NG log files, follow these steps:

  1. On the computer where the firewall is installed, open a command prompt.

  2. Switch to the \winnt\fw1\NG\bin directory where the fw.exe file is located.

  3. Export the log files using the following command:

    fwm logexport -i <input file> -o <output file>

    Note:  If you do not specify an input file Check Point exports the current log.

Notes:

  • Check Point NG does not produce an .alog file.  This information is now combined into the regular .log file.

This article was previously published as:
NETIQKB5691

Last Modified 6/25/2008.
https://support.trustwave.com/kb/KnowledgebaseArticle10346.aspx