Database Filters

Database Filters

I am testing the system and I would like the system to drop some logs. Log looks as follows

Login succeeded for user 'peter'. Connection made using SQL Server authentication. [CLIENT: 1.1.1.1] 7397466

EventID is 18454 and source ServerIP is 2.2.2.2

I would like the system to drop logs that contain user 'peter' and client IP 1.1.1.1

Here is the exported database filter I have created 

<?xml version="1.0" encoding="UTF-8"?>
-<Filters> 
-<Filter Name="Remove_Logs" EnableStatus="1"> 
<EVENTID>18454</EVENTID>
<FilterType>advance</FilterType>
 -<Message> <Include Boolean="AND">peter,[CLIENT: 1.1.1.1]</Include> </Message> 
<!--Enter HostsNames or HostGroup here-->
 <Hosts>2.2.2.2</Hosts>
<HostGroup>Enter HostGroupNames Here</HostGroup> </Filter> 
</Filters>

But this filter does not works as I see. What is incorrect here?

Thank you

      New to M365 Manager Plus?
      New to M365 Manager Plus?
        New to RecoveryManager Plus?
        New to RecoveryManager Plus?
          New to Exchange Reporter Plus?
          New to Exchange Reporter Plus?
            New to SharePoint Manager Plus?
            New to SharePoint Manager Plus?
              See all integrations
              New to ADManager Plus?
              See all integrations
              New to ADManager Plus?

                New to ADSelfService Plus?

                Start your free trial
                Start your free trial



                          Related Products