Solved: external_lookup.py is missing

chrkohm · ‎06-30-2020

Hi,

I'm trying to setup a DNS lookup following the instructions her:

But there is no external_lookup.py in the $SPLUNK_HOME/etc/system/bin/

Is there a chance to get the external_lookup.py anywhere else?

I´m running Splunk Enterprise 8.0.4 on an SLES 12

renjith_nair · ‎07-01-2020

It's default script shipping with Splunk installation. Unless you manually removed it after the installation, it should be there.

Try a `find`

 find $SPLUNK_HOME -type f -name "external_lookup.py "

Alternatively you can download a fresh splunk installation and could copy from it

---
What goes around comes around. If it helps, hit it with Karma 🙂

renjith_nair · ‎07-01-2020

It's default script shipping with Splunk installation. Unless you manually removed it after the installation, it should be there.

Try a `find`

 find $SPLUNK_HOME -type f -name "external_lookup.py "

Alternatively you can download a fresh splunk installation and could copy from it

---
What goes around comes around. If it helps, hit it with Karma 🙂

external_lookup.py is missing