Shell Script To Get Data Center Information, IP Owner, City and Country From Domain Name

March 12, 2010March 12, 2010in Domain, Monitoring, Networking last updated March 12, 2010

#!/bin/bash
# A sample shell script to print domain ip address hosting information such as
# Location of server, city, ip address owner, country and network range.  
# This is useful to track spammers or research purpose. 
# -------------------------------------------------------------------------
# Copyright (c) 2006 nixCraft project <http://cyberciti.biz/fb/>
# This script is licensed under GNU GPL version 2.0 or above
# -------------------------------------------------------------------------
# This script is part of nixCraft shell script collection (NSSC)
# Visit http://bash.cyberciti.biz/ for more information.
# -------------------------------------------------------------------------
# Last updated on Mar/05/2010
# -------------------------------------------------------------------------

# Get all domains
_dom=$@

# Die if no domains are given
[ $# -eq 0 ] && { echo "Usage: $0 domain1.com domain2.com ..."; exit 1; }
for d in $_dom
do
	_ip=$(host $d | grep 'has add' | head -1 | awk '{ print $4}')
	[ "$_ip" == "" ] && { echo "Error: $d is not valid domain or dns error."; continue; }
	echo "Getting information for domain: $d [ $_ip ]..."
	whois "$_ip" | egrep -w 'OrgName:|City:|Country:|OriginAS:|NetRange:'
	echo ""
done

#!/bin/bash

# A sample shell script to print domain ip address hosting information such as

# Location of server, city, ip address owner, country and network range.

# This is useful to track spammers or research purpose.

# -------------------------------------------------------------------------

# This script is licensed under GNU GPL version 2.0 or above

# -------------------------------------------------------------------------

# This script is part of nixCraft shell script collection (NSSC)

# Visit http://bash.cyberciti.biz/ for more information.

# -------------------------------------------------------------------------

# Last updated on Mar/05/2010

# -------------------------------------------------------------------------

# Get all domains

_dom=$@

# Die if no domains are given

[ $# -eq 0 ] && { echo "Usage: $0 domain1.com domain2.com ..."; exit 1; }

for d in $_dom

_ip=$(host $d | grep 'has add' | head -1 | awk '{ print $4}')

[ "$_ip" == "" ] && { echo "Error: $d is not valid domain or dns error."; continue; }

echo "Getting information for domain: $d [ $_ip ]..."

echo ""

done

Run script as follows:
./script.sh cyberciti.biz google.com
Sample outputs:

Getting information for domain: cyberciti.biz [ 74.86.48.99 ]...
OrgName:    SoftLayer Technologies Inc. 
City:       Dallas
Country:    US
NetRange:   74.86.0.0 - 74.86.255.255 
OriginAS:   AS36351

Getting information for domain: google.com [ 209.85.231.104 ]...
OrgName:    Google Inc. 
City:       Mountain View
Country:    US
NetRange:   209.85.128.0 - 209.85.255.255

Getting information for domain: cyberciti.biz [ 74.86.48.99 ]...

OrgName: SoftLayer Technologies Inc.

City: Dallas

Country: US

NetRange: 74.86.0.0 - 74.86.255.255

OriginAS: AS36351

Getting information for domain: google.com [ 209.85.231.104 ]...

OrgName: Google Inc.

City: Mountain View

Country: US

NetRange: 209.85.128.0 - 209.85.255.255

Tagged as: city dallas, domain ip address, echo usage, egrep command, for loop, google, google inc, grep command, research purpose, script collection, softlayer technologies inc, spammers, usage function, whois command

15 comment

Arvind says:
July 27, 2012 at 6:32 am
Good job, script works on MAC OSX/LION:
Arvinds-MacBook-Pro:~ arvind$ arvindsMac/work/PDI-scripts/get-dns.sh 123
Error: 123 is not valid domain or dns error.
Arvinds-MacBook-Pro:~ arvind$
Arvinds-MacBook-Pro:~ arvind$ arvindsMac/work/PDI-scripts/get-dns.sh google.com
Getting information for domain: google.com [ 74.125.236.66 ]…
NetRange: 74.125.0.0 – 74.125.255.255
OriginAS:
OrgName: Google Inc.
City: Mountain View
Country: US
Arvinds-MacBook-Pro:~ arvind$
Arvinds-MacBook-Pro:~ arvind$
Arvinds-MacBook-Pro:~ arvind$ arvindsMac/work/PDI-scripts/get-dns.sh agoogle.com
Getting information for domain: agoogle.com [ 216.65.41.185 ]…
Arvinds-MacBook-Pro:~ arvind$
Arvinds-MacBook-Pro:~ arvind$
Reply
Indranil says:
April 4, 2012 at 7:09 am
I tried using above script on CentOS 6 but the same is not working and giving error as
./searchdomain.sh google.co.in yahoo.co.in
./searchdomain.sh: line 22: host: command not found
Error: google.co.in is not valid domain or dns error.
./searchdomain.sh: line 22: host: command not found
Error: yahoo.co.in is not valid domain or dns error.
Please advise
Reply
1. ww2 says:
  May 2, 2012 at 7:30 pm
  You need to install host command.
  Reply
Deepak Sharma says:
August 23, 2011 at 12:54 pm
Hi I am using CentOS 5.6 (64 bit)
I am getting nothing while running this script
My output is —
[[email protected] ~]# ./521.sh cyberciti.biz http://www.google.com
Getting information for domain: cyberciti.biz [ 75.126.153.206 ]…
Getting information for domain: http://www.google.com [ 74.125.236.52 ]…
[[email protected] ~]
Can you please help me on that
Reply
1. Z.Petrov says:
  October 2, 2011 at 9:25 pm
  Hi , i get the same as DeepakSharma , i was wondering does anyone know what this is about ? Im using Fedora 15 , 64bit .
  /e I tryed “whois” command but i dont have so i replaced it with “who” , maybe thats the reason? Any ideas in general ? :)
  Reply
  1. Stanimir Stoyanov says:
    May 1, 2012 at 10:26 pm
    The issue is because of the egrep command – currently its filtering the lines starting with OrgName:|City:|Country:|OriginAS:|NetRange:
    but .org .biz and some other TLDs use a bit different wording – try to change line:
    whois “$_ip” | egrep -w ‘OrgName:|City:|Country:|OriginAS:|NetRange:’
    with
    whois “$_ip” | egrep -w ‘OrgName:|City:|Country:|OriginAS:|NetRange:|inetnum|address|descr’
    at least that works good enough for me.
    Cheers,
    Stanimir
    Reply
    1. ww2 says:
      May 2, 2012 at 7:49 pm
      How about this one? This fixed it on my centos 5.8 box:
      whois -n $_ip | egrep -wi 'OrgName|City|Country|OriginAS|NetRange|Organization|NetName' | uniq -u
      1
      whois -n $_ip | egrep -wi 'OrgName|City|Country|OriginAS|NetRange|Organization|NetName' | uniq -u
      
      Reply
Walter says:
April 21, 2011 at 6:30 pm
There is no need to use three programs if you can do it with one.
_ip=$(host $d | grep 'has add' | head -1 | awk '{ print $4}')
1
_ip=$(host $d | grep 'has add' | head -1 | awk '{ print $4}')

should read
_ip=$(host $d | awk '/has add/ {x++; if (x=1) {print $NF; exit}}')
1
_ip=$(host $d | awk '/has add/ {x++; if (x=1) {print $NF; exit}}')

Reply
Drown says:
January 2, 2011 at 10:33 am
“permission denied” ?
Reply
1. Christian says:
  April 5, 2011 at 11:50 am
  try chmod +x *scriptname*
  Reply
rno says:
December 22, 2010 at 11:33 am
– You should not use [ but [[
– You should not use this as a valid test [ “$_ip” == “” ]
but test the return value [[ $? -eq 0 ]]
Reply
Adrian says:
November 14, 2010 at 11:17 am
Nice script good job cheep it going
Reply
Silviu says:
September 22, 2010 at 7:28 pm
A small modification in the script. This allows to handle more ip addresses on the domains on which this is available (eg. google.com or yahoo.com)
Link
Reply
Silviu says:
September 6, 2010 at 10:40 am
Have dome a little update. here are the datails
Reply
Kas says:
July 9, 2010 at 5:50 pm
Use with caution, whois database server may ban you if you abuse of theyr services.
Reply

nixCraft

nixCraft

Shell Script To Get Data Center Information, IP Owner, City and Country From Domain Name

Share this on:

15 comment

Leave a Comment Cancel reply