| makeresults | eval events="1.1.1.1,4.4.4.4,1,2.2.2.2,3|1.1.1.1,4.4.4.4,2,3.3.3.3,2"
| eval events=split(events,"|")
| mvexpand events
| rex field=events "(?<source>[^,]+),(?<dest>[^,]+),(?<hop>[^,]+),(?<hop_host>[^,]+),(?<hop_perc>.*)"
| fields - events
| eval hop_host_field="hop_".hop."_host"
| eval hop_perc_field="hop_".hop."__perc"
| eval {hop_host_field}=hop_host
| eval {hop_perc_field}=hop_perc
| fields - hop_host hop_perc hop hop_host_field hop_perc_field
| stats values(*) as * by source, dest
| fields source hop* dest
