I have 35 rules, all of the rule has log to files.
Filter conditions are IPv4 Simple to look for specific IPs and String Simple "Security" (for security logs) and "Application" (for SQL database logs)
120 servers, 73 network appliances, 14 SQL DBs
Clik here to view.
