Shell Script To Get Data Center Information, IP Owner, City and Country From Domain Name

in Domain, Monitoring, Networking last updated March 12, 2010

#!/bin/bash
# A sample shell script to print domain ip address hosting information such as
# Location of server, city, ip address owner, country and network range.  
# This is useful to track spammers or research purpose. 
# -------------------------------------------------------------------------
# Copyright (c) 2006 nixCraft project <http://cyberciti.biz/fb/>
# This script is licensed under GNU GPL version 2.0 or above
# -------------------------------------------------------------------------
# This script is part of nixCraft shell script collection (NSSC)
# Visit http://bash.cyberciti.biz/ for more information.
# -------------------------------------------------------------------------
# Last updated on Mar/05/2010
# -------------------------------------------------------------------------
 
# Get all domains
_dom=$@
 
# Die if no domains are given
[ $# -eq 0 ] && { echo "Usage: $0 domain1.com domain2.com ..."; exit 1; }
for d in $_dom
do
	_ip=$(host $d | grep 'has add' | head -1 | awk '{ print $4}')
	[ "$_ip" == "" ] && { echo "Error: $d is not valid domain or dns error."; continue; }
	echo "Getting information for domain: $d [ $_ip ]..."
	whois "$_ip" | egrep -w 'OrgName:|City:|Country:|OriginAS:|NetRange:'
	echo ""
done

Run script as follows:
./script.sh cyberciti.biz google.com
Sample outputs:

Getting information for domain: cyberciti.biz [ 74.86.48.99 ]...
OrgName:    SoftLayer Technologies Inc. 
City:       Dallas
Country:    US
NetRange:   74.86.0.0 - 74.86.255.255 
OriginAS:   AS36351

Getting information for domain: google.com [ 209.85.231.104 ]...
OrgName:    Google Inc. 
City:       Mountain View
Country:    US
NetRange:   209.85.128.0 - 209.85.255.255

Tagged as: city dallas, domain ip address, echo usage, egrep command, for loop, google, google inc, grep command, research purpose, script collection, softlayer technologies inc, spammers, usage function, whois command

15 comment

Arvind says:
July 27, 2012 at 6:32 am
Good job, script works on MAC OSX/LION:
Arvinds-MacBook-Pro:~ arvind$ arvindsMac/work/PDI-scripts/get-dns.sh 123
Error: 123 is not valid domain or dns error.
Arvinds-MacBook-Pro:~ arvind$
Arvinds-MacBook-Pro:~ arvind$ arvindsMac/work/PDI-scripts/get-dns.sh google.com
Getting information for domain: google.com [ 74.125.236.66 ]…
NetRange: 74.125.0.0 – 74.125.255.255
OriginAS:
OrgName: Google Inc.
City: Mountain View
Country: US
Arvinds-MacBook-Pro:~ arvind$
Arvinds-MacBook-Pro:~ arvind$
Arvinds-MacBook-Pro:~ arvind$ arvindsMac/work/PDI-scripts/get-dns.sh agoogle.com
Getting information for domain: agoogle.com [ 216.65.41.185 ]…
Arvinds-MacBook-Pro:~ arvind$
Arvinds-MacBook-Pro:~ arvind$
Indranil says:
April 4, 2012 at 7:09 am
I tried using above script on CentOS 6 but the same is not working and giving error as
./searchdomain.sh google.co.in yahoo.co.in
./searchdomain.sh: line 22: host: command not found
Error: google.co.in is not valid domain or dns error.
./searchdomain.sh: line 22: host: command not found
Error: yahoo.co.in is not valid domain or dns error.
Please advise
1. ww2 says:
  May 2, 2012 at 7:30 pm
  You need to install host command.
Deepak Sharma says:
August 23, 2011 at 12:54 pm
Hi I am using CentOS 5.6 (64 bit)
I am getting nothing while running this script
My output is —
[root@svn ~]# ./521.sh cyberciti.biz http://www.google.com
Getting information for domain: cyberciti.biz [ 75.126.153.206 ]…
Getting information for domain: http://www.google.com [ 74.125.236.52 ]…
[root@svn ~]
Can you please help me on that
1. Z.Petrov says:
  October 2, 2011 at 9:25 pm
  Hi , i get the same as DeepakSharma , i was wondering does anyone know what this is about ? Im using Fedora 15 , 64bit .
  /e I tryed “whois” command but i dont have so i replaced it with “who” , maybe thats the reason? Any ideas in general ? :)
  1. Stanimir Stoyanov says:
    May 1, 2012 at 10:26 pm
    The issue is because of the egrep command – currently its filtering the lines starting with OrgName:|City:|Country:|OriginAS:|NetRange:
    but .org .biz and some other TLDs use a bit different wording – try to change line:
    whois “$_ip” | egrep -w ‘OrgName:|City:|Country:|OriginAS:|NetRange:’
    with
    whois “$_ip” | egrep -w ‘OrgName:|City:|Country:|OriginAS:|NetRange:|inetnum|address|descr’
    at least that works good enough for me.
    Cheers,
    Stanimir
    1. ww2 says:
      May 2, 2012 at 7:49 pm
      How about this one? This fixed it on my centos 5.8 box:
      whois -n $_ip | egrep -wi 'OrgName|City|Country|OriginAS|NetRange|Organization|NetName' | uniq -u

There is no need to use three programs if you can do it with one.

_ip=$(host $d | grep 'has add' | head -1 | awk '{ print $4}')

should read

_ip=$(host $d | awk '/has add/ {x++; if (x=1) {print $NF; exit}}')

Drown says:
January 2, 2011 at 10:33 am
“permission denied” ?
1. Christian says:
  April 5, 2011 at 11:50 am
  try chmod +x *scriptname*
rno says:
December 22, 2010 at 11:33 am
– You should not use [ but [[
– You should not use this as a valid test [ “$_ip” == “” ]
but test the return value [[ $? -eq 0 ]]
Adrian says:
November 14, 2010 at 11:17 am
Nice script good job cheep it going
Silviu says:
September 22, 2010 at 7:28 pm
A small modification in the script. This allows to handle more ip addresses on the domains on which this is available (eg. google.com or yahoo.com)
Link
Silviu says:
September 6, 2010 at 10:40 am
Have dome a little update. here are the datails
Kas says:
July 9, 2010 at 5:50 pm
Use with caution, whois database server may ban you if you abuse of theyr services.

Have a question? Post it on our forum!

Share this on:

<img class="comments-image" src="https://bash.cyberciti.biz/wp-content/themes/cybercity/assets/images/comment.png" title="Comments"> 15 comment

15 comment