I am evaluating Splun 4.x as my log file analyzer for a Checkpoint UTM-1. I followed the procedures for configuring an LEA connector & setting up OPSEC. It appears that Splunk is running & making LEA requests of the Checkpoint, but I get no data logged on Splunk.
How can I best go about troubleshooting this? What log files or debug commands can i use to trace down the fault?
I appreciate your help.
Jonathan
... View more