Modifying field definitions to include post-processing instructions

What is claimed is: 1. A method comprising: causing a user interface to be displayed that displays a list of a plurality of templates, each template of the plurality of templates including a set of rules for parsing fields from log files, each of the log files including raw data corresponding to a data item of a set of data items; receiving a selection of a particular template from the list of the plurality of templates; identifying at least one sample data item; causing display of a preview of a set of field values with associated field names, the preview graphically depicting a segmentation of the set of field values with the associated field names, the set of field values and the associated field names parsed from the at least one sample data item using index positions and delimiters corresponding to respective associated field names included in a respective set of rules of the particular template; causing display of a post-processing control; receiving an input, via the post-processing control, to define a post-processing instruction in association with a particular field corresponding with a field value of the set of field values; based on receiving the input, updating the particular template to create an updated rule from among the respective set of rules that is associated with the particular field corresponding with the field value, the updated rule including the post-processing instruction. 2. The method of claim 1 , further comprising: extracting field values from the set of data items using the respective set of rules for parsing fields from log files included in the updated particular template; and executing a search across the extracted field values. 3. The method of claim 1 , further comprising: extracting field values from the set of data items using the respective set of rules for parsing fields from log files included in the updated particular template; executing a search across the extracted field values to obtain a search result; and causing display of information relating to the search result. 4. The method of claim 1 , wherein the displayed associated field names are determined based on an analysis of the log files. 5. The method of claim 1 , wherein the segmentation is based on the delimiters corresponding to the respective associated field names included in the respective set of rules of the particular template for segmenting the set of data items into ordered sets of data chunks. 6. The method of claim 1 , wherein the post-processing rule includes at least one of removing one or more leading characters or removing one or more trailing characters. 7. The method of claim 1 , wherein the plurality of templates are selected to be displayed based on a source of the set of data items. 8. The method of claim 1 , wherein the set of data items are time-stamped events. 9. The method of claim 1 , further comprising: causing display of a graphical control for reordering one or more of the associated field names; receiving an input that reassigns at least one associated field name of the respective associated field names to at least one different field value of the set of field values, the input received using the graphical control; and based on the receiving the input, updating the particular template to create an updated rule among the respective set of rules that is associated with the at least one reassigned associated field name, the updated rule including an updated index position and an updated delimiter corresponding to the at least one different field value, the updated rule being applied to the set of data items when a search query is executed that references the at least one reassigned associated field name. 10. The method of claim 1 , wherein the updated rule includes removing of one or more characters associated with the particular field. 11. The method of claim 1 , wherein the updated rule includes at least one of concatenating two fields into one field or separating one field into two fields. 12. The method of claim 1 , wherein the post-processing control is displayed based on selection of the particular field. 13. The method of claim 1 , wherein the post-processing control includes a character input control used to input a number of characters to remove. 14. The method of claim 1 , wherein the post-processing control includes a character input control used to input a number of characters to remove, wherein the character input control includes a character input field having number of characters to remove is pre-populated with an expected value. 15. The method of claim 1 , wherein the post-processing control includes a character input control used to input a number of characters to remove, wherein the character input control includes a character input field having the number of characters to remove being populated based on received input indicating one or more of characters in the particular field. 16. The method of claim 1 , wherein the post-processing control includes a character input control used to indicate a number of characters to remove and a leading/trailing input used to indicate whether the number of characters to remove are in the leading portion of the trailing portion. 17. One or more non-transitory computer-readable medium, storing one or more sequences of instructions, wherein execution of the one or more sequences of instructions by one or more processors causes the one or more processors to perform: causing a user interface to be displayed that displays a list of a plurality of templates, each template of the plurality of templates including a set of rules for parsing fields from log files, each of the log files including raw data corresponding to a data item of a set of data items; receiving a selection of a particular template from the list of the plurality of templates; identifying at least one sample data item; causing display of a preview of a set of field values with associated field names, the preview graphically depicting a segmentation of the set of field values with the associated field names, the set of field values and the associated field names parsed from the at least one sample data item using index positions and delimiters corresponding to respective associated field names included in a respective set of rules of the particular template; causing display of a post-processing control; receiving an input, via the post-processing control, to define a post-processing instruction in association with a particular field corresponding with a field value of the set of field values; based on receiving the input, updating the particular template to create an updated rule from among the respective set of rules that is associated with the particular field corresponding with the field value, the updated rule including the post-processing instruction. 18. The one or more non-transitory computer-readable medium of claim 17 , wherein the post-processing control includes a character input control used to indicate a number of characters to remove and a leading/trailing input used to indicate whether the number of characters to remove are in the leading portion of the trailing portion. 19. An apparatus, comprising: one or more processors; and one or more memory devices storing instructions, which when executed by the one or more processors, cause the one or more processors to: cause a user interface to be displayed that displays a list of a plurality of templates, each template of the plurality of templates including a set of rules for parsing fields from log files, each of t