You may have for some reason, usually it is some compliance requirement (PCI DSS, HIPAA, etc), the need to log
everything that passes the firewall, regardless of the Log setting of each Security Rule. Check Point have thought of this need too - go to Global Properties -> Reporting Tools and click on Enable tracking all rules.
This will NOT interfere with the logging settings in the rule base - this works in parallel. Also
you have to specify another than current log server to send logs to,
which of course will require a separate license as well. This way you can
leave usual Security Policy logging for debug but send complete logs to
some dedicated logging server for storage and later retrieval.