Infoblox Exchange Cybersecurity Roadshow 2020 – Join us!
North America | Europe | Middle East/Africa | Asia-Pacific

Register Now

API & Integration

Reply

splunk - import IPAM networks for lookup
pmeyerson
pmeyerson
Techie
Posts: 12

‎10-02-2017 07:17 AM

10853     2

https://gist.github.com/pmeyerson/d68361c8258378c29e7848997c42af4e

 

Might be a bit cludgy because I am still learning python and shell scripting.
Biggest gotchas were to enable API access on the infoblox user's group settings, and make sure the lookup permissions were global on the splunk side.

HTH

Reply

Re: splunk - import IPAM networks for lookup
BRampling
Moderator BRampling
Moderator
Posts: 87

‎10-04-2017 02:11 PM

10854     2

Thanks for this, nice work!

Reply
0 Kudos

Re: splunk - import IPAM networks for lookup
pmeyerson
pmeyerson
Techie
Posts: 12

‎12-21-2017 01:03 PM

10854     2

I would now reccomend using the Splunk add-on https://splunkbase.splunk.com/app/1546/ (rest_ta).  You can then run a saved search to take the latest results and | outputlookup to update your lookup with latest data.

I ended up using response handler: JSONArrayHandler
If you want to specify arguments that are multi-value, be sure to change the delimiter to ":"

Reply
0 Kudos

Re: splunk - import IPAM networks for lookup
JS
JS
Techie
Posts: 8

‎01-09-2018 11:36 AM

10854     2

We have splunk here as well. Not sure what this really does. Can you give an example please? Great work on the code.

Reply
0 Kudos

Re: splunk - import IPAM networks for lookup
pmeyerson
pmeyerson
Techie
Posts: 12

‎01-09-2018 05:01 PM

10854     2

JS,

I get a csv/splunk lookup like this:
192.168.1.0\24, DataCenter1, servers
192.168.50.0\24, SiteC, workstations
192.168.55.0\26, SiteD, Guest Wifi
etc...
or whatever data you decide to put in the description field in infoblox for your networks.

For working with splunk I would look at the modular input app to eliminate the need for the python code. You can then use a scheduled search and | outputlookup to save as a lookup csv.

HTH

Reply
0 Kudos
Turn on suggestions Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Do you mean 

Recommended for You

Latest Annoucements

Businesses are investing heavily into securing company resources from cyber-attacks form cybercrimin

playicon

Infolbox Experts Community

You have reached the maximum number of topics allowed as a visitor. Please Login or Join the community to continue to read.

Join for free

TOPICS REMAINING

Register for unlimited browsing. Registration is FREE.

Join Community