[Oisf-users] dns log

[Andreas Herz]

On 23/12/16 at 13:21, Michael Stone wrote:
> On Fri, Dec 23, 2016 at 10:08:34AM -0500, David Zawdie wrote:
> >Not aware of Suricata not logging in cases where there is no DNS response. Is
> >that something you're seeing, and if so, what version of Suricata?
> 
> It's pretty easy to reproduce, send a dns query to a machine that isn't a
> dns server, see if it shows up in dns.log. It doesn't for me on 3.2. The
> query *does* show up in eve json log if dns logging is enabled there, but
> not in the standard dns.log.

Could you please submit a bug report at our redmine about that?
Include as mach details as possible, especially a .pcap that shows the
issue helps a lot with debugging.

Thanks

-- 
Andreas Herz