Table of Contents maxLevel 2 minLevel 2 type flat
...
Source Port → any free port you can dedicate to the incoming events
Target Tag → the target tag depends on the method used to export the events (we recommend you to use the Check Point Log Exporter)
- firewall.checkpoint.log_exporter.<group>
- firewall.checkpoint.gaia.<group>
- firewall.checkpoint.lea.<group>
- firewall.checkpoint.fw.<group>
- Check the Sent without syslog tag option.
Log samples
The following are sample logs sent to each of the firewall.checkpoint data tables. Also, find how the information will be parsed in your data table under each sample log.
| Note | ||
|---|---|---|
| ||
Fields marked as Extra in the table below are not shown by default in data tables and need to be explicitly requested in the query. You can find them marked as Extra when you perform a query so they can be easily identified. Learn more about this in Selecting unrevealed columns. |