Wednesday, January 5, 2011

How to read a Check Point log file in its native format.

Occasionally, a Check Point VPN-1 log file will be transferred from one system to another, usually for the purposes of troubleshooting. These native log files cannot be open using NotePad or Wordpad. Here is how to extract the file into readable format:



First, you will need to transfer this file to the
$FWDIR/log directory.


This will create the associated pointer files:

.log

.logLuuidDB

.logaccount_ptr

.loginitial_ptr

.logptr

Then you can either read the log natively:

fw log