Elasticsearch query with @timestamp range

Dee · August 17, 2017, 6:45pm

Hi,
What am I doing wrong in my query? I'm getting response:

"reason" : "failed to parse date field [August 17th 2017, 21:59:28.000] with format [strict_date_optional_time||epoch_millis]",
"caused_by" : {
"type" : "illegal_argument_exception",
"reason" : "Invalid format: "August 17th 2017, 21:59:28.000""
}
My query looks like this:

curl -XPOST 'localhost:9200/_all/_search?pretty' -d '
{
    "query": {
        "bool": {
            "must": {
                "match": {
                    "host": "hostname"
                }
            },
            "filter": {
                "range": {
                    "@timestamp": {
                        "gte": "August 17th 2017, 21:59:28.000"
                    }
                }
            }
        }
    }
}'

My @timestamp field in kibana also looks like this. Using epoch time works.

Thanks!

Dee · August 17, 2017, 7:28pm

Found a solution, elasticsearch is expecting iso format ("2017-08-17T21:59:28") which worked.

Thanks,

system · September 14, 2017, 7:28pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Date field format issue Elasticsearch	4	320	September 19, 2020
Struggling with date ranges Elasticsearch	1	349	September 3, 2018
Date format support Kibana	2	536	December 12, 2017
Kibana Timestamp Format Kibana	4	7223	January 4, 2018
Time range search fails Elasticsearch	8	647	July 6, 2017

Elasticsearch query with @timestamp range

Related topics