From: Victor Julien <victor@inliniac.net>
Date: Thu, 13 Feb 2014 13:36:45 +0000 (+0100)
Subject: yaml: add and comment missing dns settings
X-Git-Tag: suricata-2.0rc2~80
X-Git-Url: http://git.ipfire.org/gitweb.cgi?a=commitdiff_plain;h=d2a6b61d7611577738ab3d8ffeeff449f98b57ca;p=thirdparty%2Fsuricata.git

yaml: add and comment missing dns settings

DNS memcap settings "global-memcap" and "state-memcap" were missing.

Additionally, add request-flood setting.
---

diff --git a/suricata.yaml.in b/suricata.yaml.in
index dc06ceae0e..708c4ef4ba 100644
--- a/suricata.yaml.in
+++ b/suricata.yaml.in
@@ -1098,6 +1098,14 @@ app-layer:
     #smb2:
     #  enabled: yes
     dns:
+      # memcaps. Globally and per flow/state.
+      #global-memcap: 16mb
+      #state-memcap: 512kb
+
+      # How many unreplied DNS requests are considered a flood.
+      # If the limit is reached, app-layer-event:dns.flooded; will match.
+      #request-flood: 500
+
       tcp:
         enabled: yes
         detection-ports: