Hello Splunkers ,
I have one file whose starting line can be anything but that file ends with "Completed Backup" line . So currently the contents of file is getting indexed line by line based on time . but i want the full content of file from starting of file till "Completed Backup" In single event .
I have checked LINE_BREAKER and SHOULD_LINEMERGE settings but didn't get confidence on using these settings .
Please help me .
Warm regards
↧