1151497Sru# 2151497Sru# 3151497Sru# 4151497Sru# 5151497Srumatch { logtag = 10000; } 6151497Srudo { execute("/usr/bin/mail -s 'logtag 10000' root"); }; 7151497Sru# 8151497Srumatch { logtag = 2000, every 10 seconds; } 9151497Srudo { execute("echo 'XXXXXXXX tag 2000 packet XXXXXXXX'"); }; 10151497Sru# 11151497Srumatch { protocol = udp, result = block; } 12151497Srudo { file("file:///var/log/udp-block"); }; 13151497Sru# 14151497Srumatch { protocol = tcp, result = block, dstport = 25; } 15151497Srudo { syslog("local0.info"), syslog("local1."), syslog(".warn"); }; 16151497Sru# 17151497Srumatch { srcip = 10.1.0.0/16, dstip = 192.168.1.0/24; } 18151497Srudo { execute("/usr/bin/mail -s 'from 10.1 to 192.168.1' root"); }; 19151497Sru 20151497Sru# 21151497Srumatch { 22151497Sru rule = 12, logtag = 101, direction = in, result = block, 23151497Sru protocol = udp, srcip = 10.1.0.0/16, dstip = 192.168.1.0/24; } 24151497Srudo { nothing; }; 25151497Sru# 26151497Sru