Why do I see high latency on some of my log types in Panther?
QUESTION
Some of my log types may have high average Data Latency in Panther. Why is this happening?
ANSWER
This is the delay between when an event happened and when Panther processed it. It is calculated by taking the difference between p_parse_time (the time Panther parses the log) and p_event_time (the timestamp in the actual log file). It includes the latency introduced by the system sending the data to Panther.