FireWall-1 FAQ: Logging to More Than One Management Station
Please note: This content was from when I was operating my FireWall-1 FAQ site, which I stopped operating in August 2005. For some reason people still have links to this stuff on the Internet that people are still clicking on.
I am making this information available again AS IS. Given how old this information is, it is likely wildly inaccurate. I have no plans to update this information.
If you're still running versions of Check Point VPN-1/FireWall-1 where this information is still relevant to you, do yourself a favor and upgrade to a more recent release. If you happen to be running a current release and the information is useful, it's by happenstance :)
With FireWall-1 NG, you can specify more than one log host in your gateway object.
If $FWDIR/conf/masters (or $FWDIR/conf/loggers in 4.0 SP3 and above) contains:
compassion
communicator
Then logging will only occur to compassion, not communicator. That is the expected behaviour. Versions 3.0 and later support logging to multiple management consoles by putting a “plus” before each entry after the first in the masters file. For instance, to send logs to both compassion and communicator, your masters file will look like:
compassion
+communicator
Note this also allows “communicator” to be able to manage the firewall module. If you only want to send logs, use the file $FWDIR/conf/loggers (present in 4.0 SP3 and above) instead, using the same format.
