1145510Sdarrenr# 2145510Sdarrenr# 3145510Sdarrenr# 4145510Sdarrenr# 5145510Sdarrenrmatch { logtag = 10000 } 6145510Sdarrenr do { execute "/usr/bin/mail -s 'logtag 10000' root" }; 7145510Sdarrenrmatch { logtag = 2000, every 10 seconds } 8145510Sdarrenr do { execute "echo 'XXXXXXXX tag 2000 packet XXXXXXXX'" }; 9145510Sdarrenr# 10145510Sdarrenrmatch { protocol = udp, result = block } 11145510Sdarrenr do { execute "/usr/bin/mail -s 'blocked udp' root" 12145510Sdarrenr}; 13145510Sdarrenr# 14145510Sdarrenrmatch { 15145510Sdarrenr srcip = 10.1.0.0/16, dstip = 192.168.1.0/24 } 16145510Sdarrenr do { execute "/usr/bin/mail -s 'from 10.1 to 192.168.1' root" 17145510Sdarrenr}; 18145510Sdarrenr# 19145510Sdarrenrmatch { 20145510Sdarrenr rule = 12, logtag = 101, direction = in, result = block, 21145510Sdarrenr protocol = udp, srcip = 10.1.0.0/16, dstip = 192.168.1.0/24 } 22145510Sdarrenr do { execute "run shell command" 23145510Sdarrenr}; 24145510Sdarrenr# 25