[Oisf-users] suricata.yaml and dns field

erik clark philosnef at gmail.com
Thu Mar 29 14:48:49 UTC 2018


In my eve.json, I have:

dns:
   enabled: no

but it isnt respecting this and I am getting dns logs. How do I kill this
with fire?
---

suricata -V; grep -A 1 "dns:" /etc/suricata/suricata.yaml

This is Suricata version 4.0.4 RELEASE
        - dns:
            enabled: no
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20180329/ebb7b5d1/attachment.html>


More information about the Oisf-users mailing list