From d2a6b61d7611577738ab3d8ffeeff449f98b57ca Mon Sep 17 00:00:00 2001
From: Victor Julien <victor@inliniac.net>
Date: Thu, 13 Feb 2014 14:36:45 +0100
Subject: [PATCH] yaml: add and comment missing dns settings

DNS memcap settings "global-memcap" and "state-memcap" were missing.

Additionally, add request-flood setting.
---
 suricata.yaml.in | 8 ++++++++
 1 file changed, 8 insertions(+)

diff --git a/suricata.yaml.in b/suricata.yaml.in
index dc06ceae0e..708c4ef4ba 100644
--- a/suricata.yaml.in
+++ b/suricata.yaml.in
@@ -1098,6 +1098,14 @@ app-layer:
     #smb2:
     #  enabled: yes
     dns:
+      # memcaps. Globally and per flow/state.
+      #global-memcap: 16mb
+      #state-memcap: 512kb
+
+      # How many unreplied DNS requests are considered a flood.
+      # If the limit is reached, app-layer-event:dns.flooded; will match.
+      #request-flood: 500
+
       tcp:
         enabled: yes
         detection-ports:
-- 
2.47.3