How to see pcap data with respect to pcap time events in kibana? Here in kibana, "Index contains time-based events" (if I checked the box then unable to load the "Time-field name"),If I unchecked the box only visualising the normal data with any time frame. I want to see data with checked time at …

How to see/synchronize pcap file "Time" with kibana visualization?

spalger (Spencer Alger) April 24, 2017, 11:20pm 2

You'll need to convert the pcap time value into a time field that elasticsearch understands. Consider using logstash with the https://github.com/purbon/logstash-input-pcap plugin

Topic		Replies	Views
How to synchronize tcpdump/pcap file time with kibana? Kibana	3	1394	August 1, 2017
Can We visualize pcap(packet capture fiels) data use ELK stack? Kibana	3	1756	December 27, 2016
Kibana wont recognize my time and date filed as a time and date Kibana	9	8745	December 22, 2017
Graph time series data (Beginner) Kibana	7	6096	July 6, 2017
Date in index is different from the one visualized in kibana Kibana	4	566	December 12, 2017