We can now fire off an alert when a syslog rule triggers. While managing a few new rules, I immediately noticed I was doing repetitive work. I was creating a new alert/action for a few different syslog rules, when I noticed they all needed to take the same action. I had been going in and rebuilding the same alert/actions, as there seems to only be the option of creating a new alert/action when creating/editing log rules.
I would like to be able to assign existing alerts, and/or actions, directly within the rule actions page. Currently, while it's nice to finally be able to alert via syslog triggers, it seems to require unnecessary steps to tie them into an alert/action that already exists.
