Important Links

CCNA/CCNP/CCIE Security
CCNA/CCNP/CCIE RnS
ACE/PCNSE
CCSA/CCSE
Juniper SRX
Meraki
VmWare
Linux+/LPIC1
CPSA
Network+/Security+
ITIL
MCSA

Useful Tools

Security Advisories:
Palo Alto: https://securityadvisories.paloaltonetworks.com
Checkpoint: https://www.checkpoint.com/advisories/
Cisco: https://tools.cisco.com/security/center/publicationListing.x
Meraki: https://meraki.cisco.com/blog/cisco-meraki-customer-advisories/

Advertisements

Checkpoint Log Collection (LogRhythm) (OPSEC LEA (Log Export API))

Configuration Summary:
1. Add a Host Node for the System Monitor.
2. Add an OPSEC Application in SmartDashboard R8.
3. Record Check Point Log Server Entity SIC Name.
4. Add a Firewall Rule for Management Station (Optional).
5. Pull OPSEC Application SIC Certificate (LR end).
6. Add a Firewall Rule for the Log Server (Optional).
7. Install Updated Policy (Optional).
8. Create the System Monitor Configuration File (LR end).
9. Add a Check Point Log Source (LR end).
10. Troubleshoot (LR end).

Detailed Steps:

https://onlinehelp72.logrhythm.com/#5DeviceGuides/CheckPointLogData.htm?Highlight=checkpoint%20opsec