On R80.10 when configuring Third-Party devices to read the logs using the LEA (Log Export API), the default Log Server uses port:

In R80.10, when configuring Third-Party devices to read logs using the Log Export API (LEA), the default Log Server communicates over port 18184. This port is specifically designated for LEA, allowing external systems to securely access log data from the Check Point environment.

Understanding the specific ports used by various services is crucial for proper configuration and ensuring seamless integration. In this context, it is necessary to allow traffic through this port on firewalls and any network appliance that may involve communication with the Log Server to ensure effective log retrieval and monitoring.

By utilizing the correct port, organizations can manage and analyze security logs from Check Point devices more efficiently, leading to better security postures and compliance with best practices.