Hi @Matt Burgess I am facing a similar problem. Your help would be highly appreciated as my work is on a hold due to this issue. My data(a sample syslog) looks like below. Mar 29 2004 09:55:03: %PIX-6-302006: Teardown UDP connection for faddr 194.224.52.6/3645b4 Mar 29 2004 09:55:03: %PIX-6-302006: Teardown UDP connection for faddr 194.224.52.4/4454889 Mar 29 2004 09:54:26: %PIX-4-106023: Deny icmp src outside:Some-Cisco dst inside:10.0.0.187 I want the output to be divided into three fields: Field1: Mar 29 2004 09:55:03 (This is of fixed length) Field2: PIX-6-302006 (This is of fixed length) Field3: Teardown UDP connection for faddr 194.224.52.6/3645b4 (The remaining data and is of variable length ) I need a regular expression(for ExtractText processor) which sub string a line based on length ,start position and end position (i.e Simialr to Java SubString method.). The reason I am asking for a index and length based substring is because my syslog may vary for each machine.But still I can use the a similar regular expression to bring out extracted fields. I am using ListFile->SplitLine->SplitText->PutFile as my processor flow. Please suggest for a better flow of processor list. Once again, thanking you for the upcoming help. Sravanthi ... View more