Agustin Chernitsky ([EMAIL PROTECTED]; Saturday, August 23, 2003 10:08 AM):
> Hi guys, > I want to write a perl script for DNS resolutions (and make it public in the > site). I want this app to process computer output before it goes into > ReportMagic. > My question is, how can I do this? If I specify to analog not to resolve > DNS, I get no IPs listed in the Organization section (I get unresolved > numerical addresses), which is correct. But my idea was to resolve all IPs > listed in that section, and on many others. > I think this approach will be the fastest, since you can specify how many > results you want to be included in the report and the DNS resolver will only > process those lines. > Is there a way to force analog to include the IPs in the organization report > (or any other that requieres DNS resolution)? There's really no way to do this. You have to resolve all the IP addresses to know how to count the entries in the Domain and Organisation Reports. So you have to do the lookups before Analog writes the computer output, not after. (In which case, there are already a plethora of third-party lookups at http://analog.cx/helpers/#dns -- not to discourage you from any original ideas). Let me give an example to illustrate this. Suppose I have "ORGFLOOR -3R" to only show the top 3 items in the Organisation Report. I have a log file with the following unique hosts in it (and number of requests): IP | HOST |REQS ------------+-----------------+---- 192.168.1.1 one.example.com 3 192.168.1.2 two.example.com 3 192.168.1.3 three.example.com 3 192.168.2.1 one.example.net 2 192.168.2.2 two.example.net 2 192.168.2.3 three.example.net 2 192.168.3.1 one.example.org 1 192.168.3.2 two.example.org 1 192.168.4.1 one.example.cx 1 192.168.4.2 two.example.cx 2 When Analog puts these into the Organisation report, it holds a "bucket" for each unique organization and counts all hosts in them. Something like this: example.com 9 example.net 8 example.org 2 example.cx 3 Notice that only after all hosts have been tallied can Analog then determine what the highest count it. So, at that point it limits to the top three items: example.com, example.net and example.cx. But there's no way of tallying before resolving the IP numbers, because you don't know the domain to assign the count to until after you have resolved the IP address to a host name. -- Jeremy Wadsack Wadsack-Allen Digital Group +------------------------------------------------------------------------ | TO UNSUBSCRIBE from this list: | http://lists.isite.net/listgate/analog-help/unsubscribe.html | | Digest version: http://lists.isite.net/listgate/analog-help-digest/ | Usenet version: news://news.gmane.org/gmane.comp.web.analog.general | List archives: http://www.analog.cx/docs/mailing.html#listarchives +------------------------------------------------------------------------
