Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Alert aggregation

From: Gurgen Hakobyan <hakobyan () outlook com>
Date: Mon, 18 Apr 2016 20:02:03 +0000
Hello,

Does Snort have a mechanism to aggregate alerts globally? Like, let’s say, I want Snort to only alert me if there are a 
total of 100 alerts generated by one rule (one or many flows, I don’t care)? 

Thanks,
Gurgen
------------------------------------------------------------------------------
Find and fix application performance issues faster with Applications Manager
Applications Manager provides deep performance insights into multiple tiers of
your business applications. It resolves application problems quickly and
reduces your MTTR. Get your free trial!
https://ad.doubleclick.net/ddm/clk/302982198;130105516;z
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists sourceforge net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
http://www.snort.org


Please visit http://blog.snort.org for the latest news about Snort!
Previous By Date Next
Previous By Thread Next

Current thread: