This is the simplest way i could come up with. | regex src_ip!="(^[0-9]{1,3}.[0-9]{1,3}.[0-9]{1,3}.[0-9]{1,3}$)" This will remove all IPv4 addresses from your search. don't forget to switch "src_ip" to what field you are searching. (e,g, dest_ip, rx_hosts, tx_hosts) ... View more

this is the most simplest way i came up with. | regex src_ip!="(^[0-9]{1,3}.[0-9]{1,3}.[0-9]{1,3}.[0-9]{1,3}$)" this will remove all IPv4 addresses from your search. ... View more