@load base/frameworks/intel

export {
	redef enum Intel::Where += {
		DNS::IN_REQUEST,
		DNS::IN_RESPONSE,
	};
}

event dns_request(c: connection, msg: dns_msg, query: string, qtype: count, qclass: count)
	{
	Intel::seen([$str=query,
	             $str_type=Intel::DOMAIN,
	             $conn=c,
	             $where=DNS::IN_REQUEST]);
	}