[Webinar] Streamline your web hosting managementRegister Today

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2985
  • Last Modified:

how to clear fw log buffer from CheckPoint?

my firewall present this error, i need clean the log buffer, we needs put the fw ok..

fw-1: log buffer is full
0
Estrateam
Asked:
Estrateam
1 Solution
 
deimarkCommented:
You cant clear the buffer bud, it just means that the allocated buffer is not big enough to handle all logs being sent to it.

It may mean an increase in traffic or the fact that your box is starting to creak under the strain.

Common things to do at this stage:

1.  Consider an upgrade to the latest and greatest CP
2.  If you box cannot handle the latest version, get a bigger box

If an upgrade is not on the cards, then have a look at this article

https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solutionid=sk39267&js_peid=P-114a7ba5fd7-10001&partition=Public&product=VPN-1

It gives some more info, but personally, I would go down the official line int his case and raise with your support provider, who have more access to the official resources and can advise appropriately.
0
 
grimkinCommented:
DO you have a separate management server and gateway? If so,  the gateway may be unable to send logs to it and is consequently running out of disk / buffer space whilst logging them locally.

The kernel module maintains a buffer of waiting log messages that it gives to fwd to send to the management module. The buffer is circular, so high levels of logging may cause buffer entries to be overwritten before they can be sent to fwd. When this happens, the system log will display messages indicating that log entries are being lost - check that logs are being sent and also the disk space on the gateway.

If this is not the case, you may need to increase the log buffer size - how to do this depends on your platform and Checkpoint version.
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now