#separator \x09
#set_separator	,
#empty_field	(empty)
#unset_field	-
#path	weird
#open	2019-06-07-01-59-25
#fields	ts	uid	id.orig_h	id.orig_p	id.resp_h	id.resp_p	name	addl	notice	peer
#types	time	string	addr	port	addr	port	string	string	bool	string
1425182592.408334	-	-	-	-	-	negative_packet_timestamp	-	F	zeek
#close	2019-06-07-01-59-25