I was just trying to get the regexp option to filter on the message field. Ive seen the post:
But I cant get the AND statement to work.
Find messages that contain Word1 and Word2 (any order) Word1.*Word2|Word2.*Word1
The text I'm trying to search is:
1 1477650990.241929127 MX64 urls src=10.0.0.15:52729 dst=17.259.76.214:5223 mac=G4:T9:BA:F6:JC:E8 user=CN=Gary\20Jones,OU=Users,DC=DOMAIN,DC=LOCAL request: UNKNOWN https://facebook.com/
gary|facebook (OR) works but I cant seem to figure out gary AND facebook.
gary.*facebook|facebook.*gary doesn't return any results
Regular expressions are case-sensitive, so please try:
Feel free to contact us.
Brian / SnmpSoft Support Portal
Thank you for your reply. Is there anyway to make it case-insensitive?
Ive tried (?i)gary(?-i) and /gary/i