I am trying to have my Imail Logs indexed correctly. Right now there is no order to the events. They should be separated by Connection ID
Examples:
SMTP-(b200000069dbca52)
SMTP-(2edb0000685cc69c)
SMTPD(2edb0000685cc69c)
SMTPD(0000000000000000)
I have tried the Field Extraction Generator but it hasnot been able to correctly identfify the connection ID.
... View more