Sample : I waana drop message including ip (10.10.10.31 ~ 10.10.10.49)
===========================================================================
if [Src_IP] == "10.10.10.31" or [Src_IP] == "10.10.10.32" or [Src_IP] == "10.10.10.33" or [Src_IP] == "10.10.10.34" or ~~~~ or [Src_IP] == "10.10.10.49" { drop {} }
Match the IP against a set of CIDR ranges that comprise the complete range you want to drop, then drop if the tag is present. For your example that would be
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.