For example, the following logs are available.
2018-05-17 10:00:00.000
columnA columnB columnC
1111111 2222222 3333333
aaaaaaa bbbbbbb ccccccc
I want to index this log as two events as follows.
_time columnA, columnB, columnC
2018-05-17 10:00:00.000, 1111111, 2222222, 3333333
2018-05-17 10:00:00.000, aaaaaaa, bbbbbbb, ccccccc
However, I can not come up with a good idea to realize this.
Is there anyone who has tried similar things?
↧