Feature #1886: dns: output filtering - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #1886

closed

dns: output filtering

Added by Victor Julien over 7 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Tom DeCanio

Target version:

3.1.2

Effort:

Difficulty:

Label:

Description

DNS output is very verbose. https://github.com/inliniac/suricata/pull/2185 adds filtering per record type and allows only logging of requests or responses.

    - dns:
        # control logging of queries and answers
        # default yes, no to disable
        query: yes     # enable logging of DNS queries
        answer: no    # enable logging of DNS answers
        # control which RR types are logged
        # all enabled if custom not specified
        #custom: [a, aaaa, cname, mx, ns, ptr, txt]

No data to display

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Feature #1886

dns: output filtering