Move Customer log Module Log File

[mcarey]

I would like to place the CLM software on Server A and then map a drive to another directory on Server B, and then point the CLM software to write the logs to the directory on Server B, through a mapped drive.

Has anyone done this?

[mcnallym]

To redirect log files to another drive or path:

Windows NT/2000
1. Add to registry a new string value of FWLOGDIR under one of the following registry locations:

FireWall-1 4.1:

HKEY_LOCAL_MACHINE\SOFTWARE\CheckPoint\FW1\4.1

FireWall-1 NG and NGX:

HKEY_LOCAL_MACHINE\SOFTWARE\CheckPoint\FW1\5.0
2. Create a new directory (for example C:\MyLogs) and define a String value named FWLOGDIR containing the log path (C:\MyLogs) under HKEY_LOCAL_MACHINE\SOFTWARE\CheckPoint\FW1\5.0

Note: The target path directory must exist prior to modifying the registry. In NGX, you should enter "6.0" in the path mentioned, instead of "5.0".
3. Reboot server.


NOTE: Disable ANTI-VIRUS software.

UNIX

On UNIX machines, symbolically link $FWDIR/log directory to another drive.

Example:

fwstop (cpstop on NG and NGX)
mv $FWDIR/log $FWDIR/log.old
ln -s /path/to/new/logdir $FWDIR/log
fwstart (cpstart on NG and NGX)


WARNING:
DO NOT place log directory on a remote file system. This might result an unpredicted corruptions in active log files (fw.log, fw.adtlog).

Applies To:

• VPN-1 Pro NGX and all previous versions
• Windows OS
• Unix
• Logging
• Redirect log files
• Log Directory

It would seem that Check Point recommend that you do not map a drive to another system and link the log directory to it.

Why do you need to do such a complex method, would it not be easier to either increase the disk space on ServerA or just relocate the CLM to ServerB.

[mcarey]

You are correct, my Checkpoint SE is recommending to not do this.

This is for one of our customers, and I'm trying to come up with an archive and purging plan for the logs to avoid this configuration.

Thanks