I am trying to extract a filed using. | rex field=_raw
I used regexr to create a regular expression with an exclude group and a capture group.
I have this working, but can't seem to format this for Splunk.
Any good tips for Regex and Splunk?
Regex I am using:
(?:
↧