After a new Log Server is added to the environment and the SIC trust has been established with the SMS what will the gateways do?
A.
Gateways will send new firewall logs to the new Log Server as soon as the SIC trust is set up between the SMS and the new Log Server.
B.
Logs are not automatically forwarded to a new Log Server. SmartConsole must be used to manually configure each gateway to send its logs to the server.
C.
The firewalls will detect the new Log Server after the next policy install and redirect the new logs to the new Log Server.
D.
The gateways can only send logs to an SMS and cannot send logs to a Log Server. Log Servers are proprietary log archive servers.
I literally just spun up an R81.20 Management server and gateway and without changing anything the gateway has the option "Send gateway logs and alerts to server" so it definitely isnt B
Logs are not automatically forwarded to a Log Server. You must manually configure each relevant Security Gateway to send its logs to the new Domain Log Server. Refer to https://sc1.checkpoint.com/documents/R81/WebAdminGuides/EN/CP_R81_Multi-DomainSecurityManagement_AdminGuide/Topics-MDSG/Configuring-Logging-in-Logging-and-Monitoring.htm?TocPath=Logging%20and%20Monitoring%7CConfiguring%20Logging%7C_____0#Configuring_Logging
Once the new Log Server is added and the SIC trust is established, the gateways will be aware of the new Log Server during the next policy installation, and they will begin sending their logs to it accordingly.
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
itcom
1 month, 2 weeks agoPochex
1 month, 3 weeks agoSlicklinton
6 months, 2 weeks agoWwJim202120
6 months, 2 weeks agoaikaloge
11 months ago