yaml: add and comment missing dns settings

author Victor Julien <victor@inliniac.net>

Thu, 13 Feb 2014 13:36:45 +0000 (14:36 +0100)

committer Victor Julien <victor@inliniac.net>

Thu, 13 Feb 2014 13:40:45 +0000 (14:40 +0100)
author Victor Julien <victor@inliniac.net>
Thu, 13 Feb 2014 13:36:45 +0000 (14:36 +0100)
committer Victor Julien <victor@inliniac.net>
Thu, 13 Feb 2014 13:40:45 +0000 (14:40 +0100)
diff --git a/suricata.yaml.in b/suricata.yaml.in

index dc06ceae0efc9e1876c4de546e3e2f64d10c76bc..708c4ef4bab977bfb0dc252e9bcf4dffe6377dfb 100644 (file)
--- a/suricata.yaml.in
+++ b/suricata.yaml.in
@@ -1098,6 +1098,14 @@ app-layer:
      #smb2:
      #  enabled: yes
      dns:
+      # memcaps. Globally and per flow/state.
+      #global-memcap: 16mb
+      #state-memcap: 512kb
+
+      # How many unreplied DNS requests are considered a flood.
+      # If the limit is reached, app-layer-event:dns.flooded; will match.
+      #request-flood: 500
+
        tcp:
          enabled: yes
          detection-ports:
author	Victor Julien <victor@inliniac.net>
	Thu, 13 Feb 2014 13:36:45 +0000 (14:36 +0100)
committer	Victor Julien <victor@inliniac.net>
	Thu, 13 Feb 2014 13:40:45 +0000 (14:40 +0100)