All,
I have a log file which is largely key value, with some random human readable language tossed in. Recent upgrades have resulted in XML getting mixed into the party.
Does Splunk have a mode to which might be able to address the mixture of data types in the same logs?
%time% app=SOMETHING something=value message="Some human readable thing"
12 Name
dump is status="complete"
↧