I have created dashboard with APM related visualizations and Application logs.
While parsing logs, i used grok debugger in logstash configuration as :
'date {
match => [ "newtimestamp", "ISO8601" ]
target => "@timestamp"
}'
But in Kibana discover page in table it is coming as :
But in json , timestamp field is same as log timestamp.
Because of that when giving time range in dashboard. We are not able to see the logs as per time range. It shows logs created 5:30 hours before.
The timezone on Application server, ELK server and Kibana advanced setting is Asia/Kolkata