remote firewall logging

[philofish]

Dear Forum
LAB ENV
My remote enforcement point doesn't seem to send me any log info when i am viewing smartview tracker - the only time i see a log entry for a system behind the remote enforcement point is when i send some traffic down the IPSEC tunnel towards my local host.

As soon as i ping anything externally [NON VPN related] from a system behind the remote gateway- nothing gets flagged up in the local smart view tracker - what am i missing? as i said i do have SIC connectivity between the smart centre server and the remote enforcment point

Setup is simple and using tradictional VPN

[enf1]192.168.40.1----->router---->[enf2]192.168.30.1------>Smart centre ---->192.168.5.40

I do receive logs from the local gateway
Many Thanks for any [ahem] pointers

PS this wouldn't have to do with any MASTERS type file on the remote gateway would it?

[johngwyn]

I think the issue is your management is inside and the remote module cannot reach it. I think by default CP logs to the address on the management object whick is usually private. Create a routable NAT for your management address.
Then create a checkpoint host with only "SVN" and "log server" as options and give it the NAT you created for the management. In the properties of the remote firewall go to "logs and Masters" > "Log Servers" and select "define log server" click "add" and select the CP host you just created with the public management NAT address

HTH

John

[philofish]

John

Thanks very much!

Top man!