Filebeat local date wrong

Puk · July 31, 2017, 1:14am

Total newbie here trying to get ELK Stack working in a test environment first ahead of deploying. I've managed to get everything working fine, including Winlogbeat and metricbeat, but filebeat for my linux hosts is giving me issues.

I have it shipping logs (messages and secure) fine, but when I search them in Kibana the date is wrong in the region of -14hrs.

When I run filebeat -e -v "publish" I can see the timestamp there is incorrect so thats where it is going wrong but I don't know how to change it. My server timestamp itself is correct and the time/date is correct in the message section of the log, but the @timestamp is not.

Any ideas?

Puk · July 31, 2017, 3:25am

Fixed it. Removed the filebeat client and re-installed from the same RPM and its working fine now with the correct date. No idea why it went wrong the first time as nothing has changed.

Topic		Replies	Views
Date and time incorrect with filebeat Beats filebeat	1	315	May 12, 2020
Apache module bad timestamp from error log file Beats filebeat	2	1148	October 24, 2018
Filebeat syslog with wrong @timestamp Beats filebeat	5	1520	October 8, 2019
FileBeat Processing @timestamp instead of log @timestamp Beats filebeat	3	2701	February 26, 2020
Ayuda con fecha real en filebeat Elastic en Español	2	1302	April 19, 2019

Filebeat local date wrong

Related topics