-
1. Re: How to loop through all values returned by Extended Object without declaring them explicitly in loop body
Bill Robinson
Feb 4, 2016 9:25 AM
you can change the rule to be like eo entry//** matches and use regex.
can you do some sorting in the eo script itself so you don't need to have every possible value position check in the rule ?
-
2. Re: How to loop through all values returned by Extended Object without declaring them explicitly in loop body
Bill,
Let me see if I got this right:
if I do eo entry//** matches wouldn't I still have to enumerate every value like:
foreach "Extended Object Entry:Get SMTP listening interfaces - csv//**"
@"Value1 as String (All OS)"@ matches "192.168.2.| ..."
) AND
@"Value2 as String (All OS)"@ matches "192.168.2.| ..."
and so on?
Would it be a solution to assign the eo command in the rule and apply the matches clause on it, like:
??SMTP_INT?? assign Command:"command in EO"
??SMTP_INT?? matches "regex | regex"
?
Thanks
-
3. Re: How to loop through all values returned by Extended Object without declaring them explicitly in loop body
Niranjay Bharati
Feb 11, 2016 7:07 AM
You should try producing output of the EO in the XML tags such that it should be a separate line enclosed within an XML tag. you can try using other grammar files to parse the output.
for example, <finding>127.0.0.1 192.168.x.x</finding>
<finding>127.0.0.1 192.168.x.x</finding>
<finding>127.0.0.1 192.168.x.x</finding>
If you are not going to use EO then you can use command output and matches operator to match it to regex.
-
4. Re: How to loop through all values returned by Extended Object without declaring them explicitly in loop body
Hello Niranjay,
I tried below, but since my commands prints more than one value in the console, the matches operator fails. In the results it's looking for "Left value": IP1IP2 (bundled together the two IP's). Any way I can work around this?
foreach "Command:netstat -an | awk '/:25/{ print $4 }' | sed 's/:25.*//'"
@Out_Put@ matches "192\.168\.2\.\d{1,3}"
Thanks
-
5. Re: How to loop through all values returned by Extended Object without declaring them explicitly in loop body
Niranjay Bharati
Feb 12, 2016 3:51 AM
Hi, The command output is not getting separated per line so in this case you have to use EO with appropriate grammar file e.g. "whole line as a record" that will go through individual output lines. your EO rule should be something like
foreach "Extended Object Entry:netstat command//**"
@Name@ matches "192\.168\.2\.\d{1,3}"
end