Latest Version 5.0.0
October 16, 2019
Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
This app is archived. Learn more
Splunk Add-on for Check Point OPSEC LEA
**Splunk Add-on for Check Point OPSEC LEA is no longer supported. The 'Splunk Add-on for Check Point Log Exporter' has replaced the Splunk Add-on for OPSEC LEA for data collection. All customers should utilize it going forward.**
Built by Splunk Works
Compatibility
Not Available
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
CIM Version: 4.x
Rating
0
(0)
Log in to rate this app
Support
Not Supported
**Splunk Add-on for Check Point OPSEC LEA is no longer supported. The 'Splunk Add-on for Check Point Log Exporter' has replaced the Splunk Add-on for OPSEC LEA for data collection. All customers should utilize it going forward.**
The Splunk Add-on for Check Point OPSEC LEA allows a Splunk software administrator to collect and analyze firewall, VPN, Anti-Virus, Anti-Bot, SmartDefense (IPS), Threat Emulation, and audit logs from Check Point standalone FW-1 firewalls, standard Multi-Domain Security Management (Provider-1) environments, and Provider-1 environments using the Multi-Domain Log Module (MLM). After the Splunk platform indexes the events, you can analyze the data using the prebuilt panels included with the add-on.
This add-on provides the inputs and CIM-compatible knowledge to use with other Splunk apps, such as Splunk Enterprise Security and the Splunk App for PCI Compliance.
Categories
Created By
Splunk Works
Type
addon
Downloads
17,214
Licensing
Splunk Answers
Resources
Log in to report this app listing