#separator \x09
#set_separator	\x2c
#empty_field	\x2d
#unset_field	\x2d
#path	ssh
#fields	t	id.orig_h	id.orig_p	id.resp_h	id.resp_p	status	country
#types	time	addr	port	addr	port	string	string
1323276164.251500	1.2.3.4	1234	2.3.4.5	80	success	unknown
1323276164.251500	1.2.3.4	1234	2.3.4.5	80	failure	US
1323276164.251500	1.2.3.4	1234	2.3.4.5	80	failure	UK
1323276164.251500	1.2.3.4	1234	2.3.4.5	80	success	BR
1323276164.251500	1.2.3.4	1234	2.3.4.5	80	failure	MX