Hello
All our logging events start with a time stamp that looks like this: `00:00:23,746`
The data in between the event can have carriage returns, along with different delimiters. For example data can contain `* ~ @ ^ | <>` …..etc.
How can I get Splunk to read the events by timestamp? I don’t want any of the data between the time stamps to cause issues.
↧