The SnEP

For Network IPS appliances, the SNORT event processor (SnEP) scrapes errors from the SNORT system and sends them to a control and response module. The module interprets the errors as significant events, log messages, and SiteProtector™ system alerts.

The SnEP

The SnEP (SNORT event processor) is an application that scrapes errors from the integrated SNORT system. The appliance interprets and reports these SNORT errors in the following ways:
  • The appliance generates a significant event in Monitor Health and Statistics > System > Significant Events. The SnEP identifies the event as [SNORT ERROR] and SNORT dictates the error message string.
  • The appliance logs the error to the system in Review Analysis and Diagnostics > Logs > System.
  • The appliance sends an alert to the SiteProtector system.
Parent topic: Administering Network IPS appliances
Related tasks:
Configuring SNORT configuration and rules
Setting SNORT configuration
Configuring SNORT execution
Configuring SNORT rule profiling
Configuring SNORT rules
Monitoring significant events
Reviewing system logs
Configuring SiteProtector Management
Related reference:
Unsupported SNORT configuration options