I'm trying to produce a subsearch based off of a rex field. The goal of this search is to find every Deserialization Successful log where the MessageSequence is in the subsearch list of errors. The ultimate goal there is to identify if it's the same record failing over and over. However, the following search results in this error: Error in 'fields' command: Invalid argument: 'seq=23080948093779922' index="b2brtr_prod_main" sourcetype=applog "Deserialization Successful" | rex "MessageSequence:\s+(?<seq>\d+)" | fields _raw, seq [search index="b2brtr_prod_main" sourcetype=applog "B2B_EXCEPTION_PROCESSMESSAGE" | rex "MessageSequence:\s+(?<seq>\d+)" | fields + seq] An example B2B_EXCEPTION_PROCESMESSAGE log might be something like this: 2017-09-14 07:23:20,453-04:00 thread=12 logLevel=ERROR component=... message=... : B2B_EXCEPTION_PROCESSMESSAGE - MessageSequence: 68116944367487730 MessageException: System.AggregateException: One or more errors occurred. ---> System.Threading.Tasks.TaskCanceledException: A task was canceled. --- End of inner exception stack trace --- at System.Threading.Tasks.Task`1.GetResultCore(Boolean waitCompletionNotification) ... ---> (Inner Exception #0) System.Threading.Tasks.TaskCanceledException: A task was canceled.<--- ... View more