#!/usr/bin/perl
use strict;
use warnings;

my %domains;
my %ipcount;
my @domain_array =
  qw(ebay.com paypal.com americanbank.com usbank.com americangreetings.com);
my @vars = qw(counter dkim0 dkim1 dkim2 dkim3 dkim4 spf0 spf1 spf2
  spf3 spf4);
my @bad_domains;

foreach my $domain (@domain_array) {
    foreach my $var (@vars) {
        $domains{$domain}{$var} = 0;
    }
}

open( my $log_domain, "logdata" ) || die "$!";

while (<$log_domain>) {

    my ($host) = /domain=([\w\.]+?)\s/;    # find regex for domain
    my ($spf)  = /spf=([0-4])\s/;          # find regex for spf1
    my ($dkim) = /dkim=([0-4])\s/;         # find regex for dkim1

###IP Regex - I'm assuming the regex for this is --
    my ($ip) = $_ =~ /ip=(([0-1]?[0-9]{1,2}\.)|(2[0-4][0-9]\.)|(25[0-5]\.)){3}(([0-1]?[0-9]{1,2})|(2[0-4][0-9])|(25[0-5]))\s/;

    # Count how often this ip is found
    $ipcount{$ip}++;
    # or $domains{$host}{"ipcount"}++ below if you want the ip's per domain

    # if host is in domain list, increment counter
    if (exists $domains{$host}) {
            $domains{$host}{"counter"}++;
            $domains{$host}{"spf$spf"}++;
            $domains{$host}{"dkim$dkim"}++;
    }
    else {
        # else save it as bad domain
        push( @bad_domains, $host );
    }
}

# You could take the @vars array here to print this line also
print
"Domain,\"Domain Count\",Dkim0,Dkim1,Dkim2,Dkim3,Dkim4,Spf0,Spf1,Spf2,Spf3,Spf4\n";

foreach my $domain ( keys %domains ) {
    print join( ',', $domain, @{ %{ $domains{$domain} } }{@vars} ), "\n";
}

# You can print it like this:
while (my ($ip,$count) = each %ipcount) {
    if ($count > 1) {
        print "$ip,$count\n";
    }
}

print "The total amount of domains that we don't care about is "
  . scalar @bad_domains . "\n";

close($log_domain);