How to replace @timestamp in kibana?

Bala_Chandrahas · November 28, 2018, 10:46pm

filter {

mutate {

split => [message, ","]

add_field => {"Hostname" => "%{message[0]}"}

add_field => {"Metric-Name" => "%{message[1]}"}

convert => { "message[2]" => "integer" }

add_field => {"Metric_timestamp" => "%{message[2]}"}

convert => { "Metric_timestamp" => "integer" }

add_field => {"Metric-value" => "%{message[3]}"}

}

date {

match => ["Metric_timestamp","ISO8601"]

timezone => "America/New_York"

target => "@timestamp"

}

I am using above format but it is not working and my data is in text file which is in below format
hostname,metricname,2018-11-28T19:21:12,value.

I am getting "Metric_timestamp" this field as string. either i need timestamp in date format or replace @timestamp.

system · December 26, 2018, 10:46pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Replace @timestamp or add new field with time from log file Logstash	4	501	January 6, 2020
Another @timestamp question... non-standard timestamp transformation Logstash	4	468	September 25, 2019
Convert @timestamp date format Logstash	9	10746	April 26, 2018
Logstash date filter for @timestamp and conversion Logstash	5	580	September 12, 2019
Replacing @timestamp correctly Logstash	9	457	March 13, 2019