https://community.splunk.com/t5/Splunk-Search/nslookup-TXT-queries-with-Splunk/m-p/447893#M146125 <P>While it may not be possible to do TXT queries out of the box, an app has now been created for this <A href="https://splunkbase.splunk.com/app/4879/#/details">here</A></P> <P>This app adds a custom <CODE>dnsquery</CODE> command which utilizes <CODE>dnspython</CODE> package under the hood and allows you to do DNS queries on hostnames - tested to work for <CODE>CNAME, MX, TXT, A, PTR</CODE> records.</P> Tue, 11 Feb 2020 00:50:40 GMT manasbellani 2020-02-11T00:50:40Z https://community.splunk.com/t5/Splunk-Search/nslookup-TXT-queries-with-Splunk/m-p/447890#M146122 <P>I am trying to see if its possible to run nslookup -q=TXT domain 8.8.8.8 so i can compare the results of the output to an existing lookup csv file.</P> Mon, 06 May 2019 15:25:43 GMT https://community.splunk.com/t5/Splunk-Search/nslookup-TXT-queries-with-Splunk/m-p/447890#M146122 urana 2019-05-06T15:25:43Z https://community.splunk.com/t5/Splunk-Search/nslookup-TXT-queries-with-Splunk/m-p/447891#M146123 <P>Do either of these help? If not, why not?<BR /> <A href="https://answers.splunk.com/answers/105246/dns-resolution-in-a-search.html">https://answers.splunk.com/answers/105246/dns-resolution-in-a-search.html</A><BR /> <A href="https://answers.splunk.com/answers/8051/dns-lookup-via-splunk.html">https://answers.splunk.com/answers/8051/dns-lookup-via-splunk.html</A></P> Mon, 06 May 2019 20:11:52 GMT https://community.splunk.com/t5/Splunk-Search/nslookup-TXT-queries-with-Splunk/m-p/447891#M146123 efavreau 2019-05-06T20:11:52Z https://community.splunk.com/t5/Splunk-Search/nslookup-TXT-queries-with-Splunk/m-p/447892#M146124 <P>Hi urana,</P> <P>The default shipped command <CODE>dnslookup</CODE> does not provide this functionality. If you need a fully featured command like linux <CODE>dig</CODE> you would need to created a custom search command yourself. It could be as easy as creating a wrapper for dig and output thew results to Splunk <span class="lia-unicode-emoji" title=":winking_face:">😉</span> See the docs for an example to write a custom search command <A href="https://docs.splunk.com/Documentation/Splunk/latest/Search/Customsearchcommandshape">https://docs.splunk.com/Documentation/Splunk/latest/Search/Customsearchcommandshape</A> </P> <P>Hope this helps ...</P> <P>cheers, MuS</P> Mon, 06 May 2019 20:24:57 GMT https://community.splunk.com/t5/Splunk-Search/nslookup-TXT-queries-with-Splunk/m-p/447892#M146124 MuS 2019-05-06T20:24:57Z https://community.splunk.com/t5/Splunk-Search/nslookup-TXT-queries-with-Splunk/m-p/447893#M146125 <P>While it may not be possible to do TXT queries out of the box, an app has now been created for this <A href="https://splunkbase.splunk.com/app/4879/#/details">here</A></P> <P>This app adds a custom <CODE>dnsquery</CODE> command which utilizes <CODE>dnspython</CODE> package under the hood and allows you to do DNS queries on hostnames - tested to work for <CODE>CNAME, MX, TXT, A, PTR</CODE> records.</P> Tue, 11 Feb 2020 00:50:40 GMT https://community.splunk.com/t5/Splunk-Search/nslookup-TXT-queries-with-Splunk/m-p/447893#M146125 manasbellani 2020-02-11T00:50:40Z