[Snort-users] action on packet

Knight, Ric RKnight at ...7145...
Thu Oct 10 09:46:08 EDT 2002


You can use the -s flag to send the alerts to syslog, and then use swatch or
logcheck to monitor the syslog file and take some kind of action on the
alert. 

-----Original Message-----
From: Reinaldo Nurquez [mailto:RNurquez at ...7141...]
Sent: Thursday, October 10, 2002 12:20 PM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] action on packet



Hello: 
        Can I configure my rules for to do some action on the packet for
example: send a mail some people about the alert, how can I configure it? 

Thank in advanced 

Best Regards 

Reinaldo

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20021010/81dd189d/attachment.html>


More information about the Snort-users mailing list