Loghog was designed to take a proactive stance on snort output. It supports multilog processing and is optimized for high volume traffic. It responds to events by conducting actions such as various forms of email notification and blocking via ipchains, iptables, or ipfw.
