Support, Support Requests, Training, Documentation, and Knowledge ... https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmi...

My Account
Bem-vindo(a) Alexander Sarpa | Sait
Home Accounts Products Support Quoting Tools My Profile Event Log

Home My Service Requests Create Service Request Support Quote Tool My Support Programs Additional Services
Home > Search Result > SecureKnowledge Details

Support Advanced Access

Solution ID: sk26214 Previous Next

Security gateway is not logging to the SmartCenter Server

Product: VPN-1 Pro (VPN-1/FW-1) Print this Solution

Version: NG AI, NG, NGX
Last Modified: 29-nov-2006 Email this Solution
Back to Results List

Symptoms
The Security gateway does not send logs to SmartCenter Server and logs locally.

Cause
There are many reasons why the Security gateway might fail to log to the
Management/SmartCenter Server.
Some of the possible reasons are:

1. Secure Internal Communication (SIC) failure.

2. DNS failure.

3. Fully Qualified Domain Name (FQDN) does not resolve to the correct IP address or
does not resolve the name at all when a FQDN is used in the $FWDIR/conf/masters
file.

4. Misconfigured /etc/hosts file.

Solution
To correct logging problems, one, some or all of the steps below can be used.

Procedure

1. Test SIC to verify communication has been established. Recreate SIC if necessary.
(click here for more information on establishing SIC).

2. Verify name resolution. This could be Hostname or FQDN depending on

environment.

3. Stop the Security gateway daemon and edit the $FWDIR/conf/masters file with log
server information

NOTE:

1 de 2 27/05/2008 12:57
Support, Support Requests, Training, Documentation, and Knowledge ... https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmi...

If using FQDN you must verify this resolves correctly, or use IP address of log
server.

4. In the SmartDashboard: Go Manage --> Network Objects -->; FireWall Object -->
Logging --> Logs and Masters --> Logging and select "Use Local Definitions" to
make sure file is not overwritten.

5. Check object properties and verify Logs and Masters settings, if manually edited,
ensure that "Use local definitions" is selected.

Review these solutions for relevance:

sk6432 - No log entries showing in the Log Viewer
sk19225 - Log viewer entries are off by one hour
Applies To:
Logging
$FWDIR/conf/masters
Secure Internal Communications (SIC)

Rate This Solution

Please choose the option that best reflects your response.

Did you find what you were looking for?

Yes, on my 1st try
Had to search several times
Did not find it

How did this solution address your need?

Solved my need
Helped to solve my need
Did not help at all

Was this solution easy to follow?

Explanations were comprehensive, and instructions were easy to follow
Instructions were partial or inaccurate
I could not understand the instructions

Did it increase your knowledge?

I understand the product better, and know how to avoid future issues
I understand the product better
The solution did not have any added value

Please tell us how to make it better:

Submit

©2003-2008 Check Point Software Technologies Ltd. All rights reserved.

Version 4.39

2 de 2 27/05/2008 12:57