Latest Version 5.0.0
October 16, 2019
Warning
Splunkbase Classic has been deprecated and will be deactivated on February 18, 2026.
This app is archived. App archiving documentation
Splunk Add-on for Check Point OPSEC LEA
**Splunk Add-on for Check Point OPSEC LEA is no longer supported. The 'Splunk Add-on for Check Point Log Exporter' has replaced the Splunk Add-on for OPSEC LEA for data collection. All customers should utilize it going forward.**
Built by
Compatibility
Splunk Enterprise
Platform Version: 9.4, 9.3, 9.2, 9.1, 9.0, 8.2, 8.1, 8.0, 7.3, 7.2, 7.1, 7.0
CIM Version: 4.x
Rating
0
(0)
Log in to rate this app
Support
Not Supported
**Splunk Add-on for Check Point OPSEC LEA is no longer supported. The 'Splunk Add-on for Check Point Log Exporter' has replaced the Splunk Add-on for OPSEC LEA for data collection. All customers should utilize it going forward.**
The Splunk Add-on for Check Point OPSEC LEA allows a Splunk software administrator to collect and analyze firewall, VPN, Anti-Virus, Anti-Bot, SmartDefense (IPS), Threat Emulation, and audit logs from Check Point standalone FW-1 firewalls, standard Multi-Domain Security Management (Provider-1) environments, and Provider-1 environments using the Multi-Domain Log Module (MLM). After the Splunk platform indexes the events, you can analyze the data using the prebuilt panels included with the add-on.
This add-on provides the inputs and CIM-compatible knowledge to use with other Splunk apps, such as Splunk Enterprise Security and the Splunk App for PCI Compliance.
Categories
IT Operations, Security, Fraud & Compliance
Created By
Splunk Works
Type
addon
Downloads
17,240
Splunk Answers
Ask a question about this app listing(Opens new window)Resources
Log in to report this app listing