Anuar, always post examples of your data as you did now. Much easier to try to help. 
Your datetime field is in the format, "ISO8601".
Try this:
filter {
date {
match => [ "datetime", "ISO8601" ]
timezone => "Etc/UTC"
}
}
Anuar, always post examples of your data as you did now. Much easier to try to help.
Your datetime field is in the format, "ISO8601".
Try this:
filter {
date {
match => [ "datetime", "ISO8601" ]
timezone => "Etc/UTC"
}
}
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.