Exporting logs from Check Point FireWall-1
I've recently been trying to improve a SOX process for analysing firewall activity, currently based on a manual daily check. As part of that work, I knocked together a quick batch file which can be used for automating the export of logs from Check Point FireWall-1, since by default, the logs generated are not readable as standard ascii text. The logs need to be exported using 'fwm.exe logexport', which outputs into a more readable CSV format, allowing you to carry out pre-processing of the data using other tools, such as the excellent fwlogsum.
You should setup the attached batch as a scheduled task to run once per day, once the logs have rotated.
0 comments
Leave a comment...
To leave a comment on this posterous, please login by clicking one of the following.
