I am collecting BIND logs and being parsed properly. However wanted to seek your ideas if below can be achieved using graylog pipelines?
among the bind logs one of the field I am collecting is client who is querying which is coming as IP addresses. If I can do a PTR or ping -a to that host I get the hostname that way it is pretty easy to identify hence wondering if function or pipeline can be written to achieve the same?
C:\Users\neo>ping -a 192.168.5.103
Pinging DESKTOP-TUSS$$F [192.168.5.103] with 32 bytes of data: