When setting up an externally managed log server, what is one item that will not be configured on the R80 Security Management Server?
When setting up an externally managed log server, what is one item that will not be configured on the R80 Security Management Server?
When setting up an externally managed log server, the configuration typically includes specifying the IP address, establishing Secure Internal Communication (SIC) to ensure secure communication, and possibly using the Fully Qualified Domain Name (FQDN) for identification within networks. However, Network Address Translation (NAT) is not a standard configuration item for the Security Management Server in the context of setting up an externally managed log server, as NAT is generally related to routing and address translation rather than direct communication setup between the management server and the log server.
KTM and secadmin44: Sorry but both are misinterpreting the question. An externally managed log server is the same a separated log server, so if you configure an separated log server, you need SIC. Correct answer is C (you do not use NAT as an attribute or parameter for establish comunication between SMS and log server)
Should be B?
Yes. Due to Check Point B SIC is correct answer! It is not possible to connect with an external managed log server using SIC.
C is the correct answer. SIC configuration is required. https://sc1.checkpoint.com/documents/SMB_R80.20/AdminGuides/Locally_Managed/EN/Content/Topics/Configuring-External-Log-Servers.htm?TocPath=Appliance%20Configuration%7CLogs%20and%20Monitoring%7C_____3
question is: "what is one item that will not be configured"? NAT is not needed so answer is C
Well, even with external, non checkpoint log server, you would still have certificate exchange using OPSEC object, which can be considered as SIC.
Correct Answer: B
No need for NAT