Check Point Firewall Log Analysis

Comprehensive Log Analysis & Reporting For Check Point Firewall's

Firewall Analyzer can analyze, report, and archive logs from your Check Point Firewall's (it also supports other firewall's). Firewall Analyzer has been OPSEC™ certified by Check Point and has joined the OPSEC Alliance.

You need to configure Check Point firewall's to support the Check Point logs. Firewall Analyzer supports log import from most versions and Log Extraction API (LEA) support for versions R54 and above. Firewall Analyzer lets you add LEA servers to establish connections and retrieve logs from Check Point firewall's. You can add as many LEA servers as needed, and set up authenticated or unauthenticated connections to retrieve firewall logs.

Firewall syslogs reveal a lot of information on the nature of traffic coming in and going out of the firewall, allows you to plan your bandwidth requirement based on the bandwidth usage across the firewall's. Analyzing these firewall traffic logs is vital to understanding network and bandwidth usage and plays an important role in business risk assessment. Firewall Analyzer offers many features that help in collecting, analyzing and reporting on firewall logs.

Firewall Analyzer supports the following reports for Check Point firewall:

• Live Reports
• Traffic Reports
• Protocol Usage Reports
• Web Usage Reports
• Mail Usage Reports
• FTP Usage Reports
• Telnet Usage Reports
• Event Summary Reports
• VPN Usage Reports
• Firewall Rules Report
• Inbound Outbound Reports
• Intranet Reports
• Internet Reports
• Streaming & Chat Sites Reports
• Security Reports
• Attack Reports