Logo
Sign in
  1. Logpoint Service Desk
  2. Products Hub
  3. Marketplace
default.png

CheckPoint Firewall

CheckPoint Firewall enables you to fetch and analyze logs from CheckPoint Firewall devices.

 

 

 

Release Details
Version: 5.2.1
Release date: 30th October, 2024
Supported On: Logpoint v7.4.0 and later
Documentation: CheckPoint Firewall
SHA 256: 42a335b8b4713f0b595d16068352a9efb88e707bd373e547d34f6717174a3eb2
Download

Package Details

Checkpoint Components:
  1. Fetchers
    • OPSEC Fetcher
    • Adhoc OPSEC Fetcher
  2. Dashboard Packages
    • LP_CheckPoint Firewall
    • LP_CheckPoint Firewall Opsec
  3. Normalization Packages
    • LP_CheckPoint Endpoint Security
    • LP_CheckPoint Firewall
    • LP_CheckPoint Firewall Opsec Generic
    • LP_CheckPoint Firewall Process
  4. Label Packages
    • LP_CheckPoint Firewall
    • LP_CheckPoint Firewall Opsec
  5. Compiled Normalizers
    • CheckPointOpsecCompiledNormalizer
    • CheckPointInfinityCompiledNormalizer
    • CheckPointFirewallCEFCompiledNormalizer
  6. Report Packages
    • LP_CheckPoint Firewall
    • LP_CheckPoint Firewall Opsec

Enhancements

Description

Issue ID

Reference ID
Checkpoint Firewall is now compatible with Logpoint v7.5.0.

PLUG-11874

 -

Past Releases

CheckPoint Firewall v5.2.0

Version: 5.2.0

Release date: April 26, 2024
Supported On: Logpoint v7.4.0 or later for log source template
Documentation: CheckPoint Firewall guide
SHA 256: 0fbd106f88852705e98e2f310f10fe8e3054e6050ade4aa7dee1580997df2877

Download

Enhancement

Description Issue ID Reference ID
Added Syslog Collector based Check Point log source template, simplifying the log source configuration process. To learn more, go to Creating Log Source via a Template. KB-23294 -

 

CheckPoint Firewall v5.1.2

Release Date: February 7, 2023

Supported On: Logpoint 5.2.0 or later

Download: CheckPoint_Firewall_5.1.2.pak

SHA256: 2a379b9394ec2c83cfb64bc22fad1c5c437314058d0119fb0e2d00afe9e0fbf3

Enhancements

Description Issue ID Reference ID

Renamed the following label: 

 KB-10601 -
Former Label Updated Label
User, LogOut User, LogOut, Logoff

Improved the normalization performance of CheckPointOpsecCompiledNormalizer. 

 KB-18389 69431

Updated the signature by adding a relevant field in the LP_Checkpoint Firewall to normalize CheckPointFirewallnew log format. 

 KB-12411 49853
Created a new compiled normalizerCheckPointFirewallCEFCompiledNormalizer, which supports the CheckPoint Firewall logs. KB-17217  

Added new signatures in LP_CheckPoint Firewall to normalize CheckPoint Firewall logs. In addition, the following labels are renamed: 

 KB-16697 61745
Former Taxonomy Updated Taxonomy
nat_add_rule  nat_add_rule_number
browser  client_type
user_dn  source_user_dn

dst_user_dn 

 destination_user_dn
uid log_uid
user_id uid
peer_address  peer_gateway 
algorithm encryption_method

Bug Fix

The following issue is fixed:

Description Issue ID Reference ID

Some CheckPoint logs were not normalized by CheckpointFirewallCEFCompiledNormalizer 

and CheckPointInfinityCompiledNormalizer. 

 KB-14267, KB-17361, KB-17737, KB-16124 59844, 67105, 67137, 64210

 


Support

If you have any questions or require assistance, create a support ticket.

 

Comments

Article is closed for comments.

Follow

Related articles

  • Logpoint Agent Collector
  • Universal REST API Fetcher
  • JSON Parser
  • ChatGPT Integration
  • Percentile
Privacy policy    EULA    Terms of service   
Copyright © , Logpoint. All rights reserved.