Integrate formated date to elasticsearch

Sylfaen · June 1, 2017, 8:37am

Hey

I'm trying to integrate date format like "Fri Jan 02 17:34:45 CET 2017" but logstash send me error message with malformated date at "CET 2017"

I used the response from here but

"exDate": {
"type": "date",
"format": "E MMM d H:m:s z Y"
},

isn't working. Is there a specific thing with CET ? How can I map my date ?

Thanks!

Sylfaen · June 2, 2017, 8:41am

Resolved by removing CET from the field and matching date with timezone :

if ([expDt]) {
    mutate {
      gsub => ["[expDt]", "CET", ""]
    }
    date {
      match => ["[expDt]", "E MMM d H:m:s  Y"]
      timezone => "CET"
      target => "[expDt]"
    }
  }

system · June 30, 2017, 8:41am

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Formatting date format in ES index template Elasticsearch	1	605	April 22, 2020
Date match issue in logstash filter Logstash	2	1202	April 18, 2017
Impossible format date Logstash	14	389	March 4, 2019
ES index date format for date/timezone offset Logstash	2	925	October 30, 2021
Date format in Elasticsearch Logstash	9	1255	December 16, 2021

Integrate formated date to elasticsearch

Related topics