This was too long to put in the comments, so am posting it here:

tom_frotscher
That seems to work great... I can see the correct values (and multiple values) when I view the events. It correctly splits out the carriers and errors into multiple values.

rex max_match=25 "(?<carrier>\d+)\[(?<error>\-?\d+\.?\d+)\]"| search error="*"

Now that I am trying the next step (graphing it), I have a feeling that this might have been the wrong route. My ultimate goal is to have a graph of errors by carrier, which means that the carrier and error need to be related across events. So as events like this come in, the error for carrier 1 will fluctuate. I want to see a graph of the errors for carrier 1 over time. Eventually, I would put them all on the same graph, so that I have a line graph where each line represents a carrier, the x-axis is time and the y-axis is error value.

Kind of like this, but these values are all messed up:
https://www.dropbox.com/s/ie56feayop1q9ln/carrier_chart.PNG

Am I just expanding these variables incorrectly? or am I setting this up totally wrong?

Your regex should be corrected to this since you won't capture the first 0 in yours:

(?<carrier>\d+)\[(?<error>[^\[\]]+)

props.conf

[yoursourcetype]
REPORT-MYREPORT = MYREPORT

transforms.conf

[MYREPORT]
REGEX =  (?<carrier>\d+)\[(?<error>[^\[\]]+)
MV_ADD = TRUE

And if you want to set it in config files, see this

http://answers.splunk.com/answers/112311/multi-value-field-extraction

Hi!
Based on your information, i am not 100% sure, how your events realy look like. But i think a rex like this can help to get you started:

rex max_match=100 "(?<carrier>\d+)\[(?<error>\-?\d+\.?\d+)\]"

Because of the max_match, the rex doesn't stop after the first match, instead it matches more often (in this case up to 100 times, a value of 0 means unlimited). If it matches more than once, the field becomes an multivalue field.

You can also read this up in the docs:

link