I found IPS log which is having only Month Day and time fields as below sample log
<130>Mar 15 07:27:29 SyslogAlertForwarder:
I need build a standard timestamp using above log under logstash filter as below.
2018-03-15T07:27:29.969ZThe documentation contains an example of how to parse syslog messages.
https://www.elastic.co/guide/en/logstash/current/config-examples.html#_processing_syslog_messages
1 Like
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.