To build on Dave's answer:

Actually, if the fields are comma-separated, there is an even easier way to tell Splunk how to identity them. Assume that you create a sourcetype called CDR for your data.

In props.conf

[CDR]
TRANSFORM-ecf1=extract-CDR-fields

In transforms.conf

[extract-CDR-fields]
DELIMS = ","
FIELDS = ANumber,BNumber,deliveryDate,etc.

These conf files can be put in $SPLUNK_HOME/etc/system/local

As Dave pointed out, you should create a separate index for your CDR data. I would suggest this:

1. Create the new index.
2. Set up the props.conf and transforms.conf files
3. Upload some sample CDR into the index. Be sure to specify the CDR sourcetype manually (just type it in) and choose your new index. This can all be done from the Splunk GUI.
4. Play with the data. If it looks wrong, use the clean command to clean out your index and try again.
5. When the data looks right - clean out the index one more time and then start indexing your real data!

What system are your CDR files from? Sideview makes apps for both Cisco CallManager's CDRs and Shoretel CDR. And if you can send us sample logs we may very well be able to expand into your particular product. 😃 If you can help us with sample data to get a new app started we will happily grant you a free perpetual license to use the resulting product.

Mary - the good news is that this is possible. You would probably split the fields out (even using the GUI) to create a Regex, defining the field. Searches are easily constructed for ANumber etc.
If volume isn't going to cause you a problem with your license (CDRs are big, I know) then you could index the lot. Defining a new index would be advisable.
For Regex I'll post the links, ditto the tutorial if they are useful?
Br
D