RE: action on packet

["Knight, Ric" <RKnight () TUC ca>]

You can use the -s flag to send the alerts to syslog, and then use swatch or
logcheck to monitor the syslog file and take some kind of action on the
alert. 

-----Original Message-----
From: Reinaldo Nurquez [mailto:RNurquez () etek cl]
Sent: Thursday, October 10, 2002 12:20 PM
To: snort-users () lists sourceforge net
Subject: [Snort-users] action on packet



Hello: 
        Can I configure my rules for to do some action on the packet for
example: send a mail some people about the alert, how can I configure it? 

Thank in advanced 

Best Regards 

Reinaldo