Solved: Can you help me extract an event between tags?

jip31 · ‎11-26-2018

Hello

I have XML logs and I want to extract all the text between these tags
What is the better way to do this please???

 "<Data><EventData></Data></EventData>"

FrankVl · ‎11-26-2018

Assuming this is related to you other question, the EventData_Xml field is already extracted and looks like <Data>...text...</Data>, right?

So you want to get the part from between the Data tags?

| rex field=EventData_Xml "\<Data\>(?<EventData_Data>[^\<]+)\<\/Data\>"

FrankVl · ‎11-26-2018

Assuming this is related to you other question, the EventData_Xml field is already extracted and looks like <Data>...text...</Data>, right?

So you want to get the part from between the Data tags?

| rex field=EventData_Xml "\<Data\>(?<EventData_Data>[^\<]+)\<\/Data\>"

jip31 · ‎11-26-2018

many thanks

FrankVl · ‎11-26-2018

That doesn't look like valid XML, are you sure the tags occur in that order? I would expect the </Data> to come behind the </EventData>.

jip31 · ‎11-26-2018

yes you are right sorry

Can you help me extract an event between tags?