hi ,
i have below directory structure and each subnode contains multiple log files which are generated daily and closed and then next day or some time after couple of days another file is generated and closed....i am capturing 3 events from each log file but there is no matching id or pattern in these events to "aggregate" them into 1 event...can we aggregate these 3 events based on the file being read for that day ?
-nodes
-
subnode1 subnode2 subnode3 etc..... subnode1 file1_today.txt ,file2_yesterday.txt etc...........