Hi,
I am new to the ELK stack. We have setup a Filebeat -> Logstash -> Elastic -> Kibana.
Apache logs are in JSON format (This will avoid grok filter) as following
{ "time":"[31/May/2017:00:12:58 -0500]", "clientIP":"-", "x-forwarded-for":"a.b.c.d", "request":"/v2/test", "query":"", "method":"POST", "status":200, "userAgent":"xxxxxx", "referer":"-", "size":297, "resTime":8530, "correlationId":"dgaysudt6a7d5dhjsdgjh"}
Now how do I get the time field from the JSON parsed as datetime into the same field.
Thanks in advance
-Dhilli