Date extraction from a log file

mariyana · June 21, 2018, 1:40pm

hi,
I want to extract date from a log file to another field in elastic search that is coming through logstash. My log file is like this

21 May 2018 12:13:32,025 INFO [org.jboss.as.configadmin] (ServerService Thread Pool -- 26) JBAS016200: Activating ConfigAdmin Subsystem

What I want is get the date field extracted using logstash and save it to elastic search. Any help would be appreciable.

magnusbaeck · June 21, 2018, 1:43pm

Use a grok filter to extract fields (like the timestamp) and use a date filter to parse the timestamp into a standard format.

This is a standard setup for which there are countless examples, though probably not the exact log format you have.

system · July 19, 2018, 1:43pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
How to extract date from some field containing Date and time in logstash Logstash	2	280	June 7, 2019
Date format in elasticsearch Elasticsearch	6	691	July 5, 2017
Logstash Parse Date Issue Logstash	2	656	July 6, 2017
Parse logfile date into Kibana's timestamp Logstash	18	4381	May 10, 2017
Date filter in logstash.conf not parsing the date while grok parses it by timestamp_iso8601 Logstash	21	27377	July 6, 2017