Traffic by rulebase

[MBreve]

Hi,

I'm looking for a way to report traffic volumes by rulebase number.

The standard reports don't offer this and I can't find a way to report this.

For all the rules I want to monitor I've set the log option to Account.

Am I missing something or is this simple option not possible?

TIA,

Marc

[melipla]

I believe you have to use Eventia Reporter to interpret the Accouting information.

HTH

[MBreve]

I am using Eventia Reporter.

But all I have are the pre-defined standard reports. None of these will report traffic volumes per rulebase number.

The options to configure your own report are so limited it's hardly useable.

I can't imagine that a simple request like this sin't possible with Eventia Reporter (which we especially purchased for this report).

[chillyjim]

If you already own EVR and have it on support, I would strongly recommend that you upgrade to EVR R63. There have been several reports added and configuring the reports is easer than in older versions.

I don't know that what you are looking for is in there, but if its not open a ticket/RFE on it. The process of adding reports to EVR has been improved as well (Dynamic download instead of upgrades).

[MBreve]

Thanks!

We do have full support.

The current version is R61, any idea if I can install Eventia R63 right away or do I need to upgrade to R62 first for the SmartCenter.

Bye,

Marc

[kva.kva]

Eventia Reporter R63 can be upgraded from version R56 and up.
But don't forget read the upgrade guide, because R63 has a new architecture. And Upgrade process is not so simple.

[MBreve]

Thanks for the info.

I've downloaded the whitepapers and I don't expect a problem.

I wanted to download the software as well but they charge $25 for the CD and shipping. I'll wait to see if Eventia R63 is included in the R65 package I ordered last week. I hope they include Eventie R63 as well.

[melipla]

Quote:

Originally Posted by MBreve

I wanted to download the software as well but they charge $25 for the CD and shipping. I'll wait to see if Eventia R63 is included in the R65 package I ordered last week. I hope they include Eventie R63 as well.

Ah my biggest complaint :) If you have a support contract you can get it for free, you just have to go about it a funny way. Go to this URL:
https://supportcenter.checkpoint.com...MainSearch.jsp
After you login, under "Download Software" there's a link to "Upgrade Kits". You can order through here for free (once per product I believe).

[chillyjim]

Quote:

Originally Posted by MBreve

Thanks for the info.

I've downloaded the whitepapers and I don't expect a problem.

I wanted to download the software as well but they charge $25 for the CD and shipping. I'll wait to see if Eventia R63 is included in the R65 package I ordered last week. I hope they include Eventie R63 as well.

Eventia R65 is included on the R65 CDs. It's the same thing with newer SPLAT drivers.

BTW they did post the ISO's for R65 on the download center. It's not been the fastest thing in thew world, but I suspect that has to do with the number of people d/l'ing it.

[MBreve]

I did have quite a few problems reaching several CheckPoint servers the last two days.

I hoped to find the R65 ISO's but all I found was a link to order the CD's. I planned to order them anyway but I hoped to get started last sunday.

[melipla]

Quote:

Originally Posted by chillyjim

BTW they did post the ISO's for R65 on the download center. It's not been the fastest thing in thew world, but I suspect that has to do with the number of people d/l'ing it.

Nice! And I was waiting for the CD's too. 10 minutes to download isn't bad.

[MBreve]

10 minutes?

Mine will take double that.

Anyway, I'm happy they're online so I can try some things out.

Funny to see they weren't online last sunday...

[Reaper]

I wonder where can i download it?

[chillyjim]

http://downloads.checkpoint.com/dc/s...&os=&x=14&y=14

[Reaper]

Thanks, got it. Now i just have to wait for IPSO version.