General Description
The WhoIsLookup application enables you to use the whoislookup process command to enrich logs with the information related to the given field from the WHOIS database. The WHOIS database consists of information about the registered users of an Internet resource such as registrar, IP address, registry expiry date, updated date, name server information, and other information. If the specified field name and its corresponding value are matched with the equivalent field values of the WHOIS database, the process command enriches the search result.
Release Details
|
Fields |
Details |
|---|---|
|
Name |
WhoIsLookup |
|
Version |
3.0.0 |
|
Supported On |
LogPoint v6.3.0 and later |
|
Release Date |
2018-07-30 |
| Document Date | 2018-07-30 |
| Download | WhoIsLookup_3.0.0.pak |
| SHA256 | bc5e8a1e4dfcf8348be480a773b116b7ae8b0eea6bed4182c547e36ccdeed3d7 |
Usage Information
Syntax: | process whoislookup(field_name)
For example, "| process whoislookup(domain)" command enriches the log message with values associated with the matched domain field from the WHOIS database.
Sample Search
Installation
Follow these steps to install the WhoIsLookup v3.0.0:
- Download the WhoIsLookup_3.0.0.zip file provided above in the Download section.
- Extract the zip file to obtain the WhoIsLookup_3.0.0.pak file.
- Install the plugin by importing the pak file to LogPoint under Settings >> System >> Applications.
Release Details
|
Fields |
Details |
|---|---|
|
Name |
WhoIsLookup |
|
Version |
4.0.0 |
|
Supported On |
LogPoint v6.6.0 or later |
|
Release Date |
2020-02-26 |
| Document Date | 2020-02-26 |
| Download | WhoIsLookup_4.0.0.pak |
| SHA256 |
d420fd71dfec3e68ec90467c0eec15895311b6d0ca6d2644bb1237eb378120d5
|
Package Details
The application package consists of the following component:
- Process Command
- WhoIsLookup
Bug Fix
Previously, while using the process command, if the outgoing traffic was blocked, the search became unresponsive. The issue has now been resolved.
Usage Information
Syntax: | process whoislookup(field_name)
For example, "| process whoislookup(domain)" command enriches logs with values associated with the matched domain field from the WHOIS database.
Sample Search
Installation
Follow these steps to install the WhoIsLookup v4.0.0 application:
- Download the WhoIsLookup_4.0.0.pak file provided in the Download section above.
- Install the plugin by importing the pak file to LogPoint under Settings >> System >> Applications.
Support
If you have any queries or require assistance, please feel free to contact our support team:
Email: servicedesk@logpoint.com
Phone: +45 7060 6100
Best regards,
The package is announced with version number 5.0.0, but the download package is called WhoIsLookup_4.0.0.pak. Which version is correct?
@Hans, The correct version is 4.0.0. But, can you please let me know where it was announced as 5.0.0?
Hi Manjul,
please take a look at https://servicedesk.logpoint.com/hc/en-us/sections/115001170305-Applications-LP-6-#W
Thanks Hans, We are in talks with Service Center support to fix the issues in Help Center. The versioning issue is fixed as of now.
Another mismatch.
At "For LogPoint v6.7 or later" is written:
Supported On: LogPoint v6.6.0 or later