hi i used date filter as:
date {
match => ["log_timestamp", "yyyy-MM-dd HH:mm:ss" ]
}
filter is working but in log_timestamp it shows 2016-12-31 22:31:24, in @timestamp it is January 1st 2017, 02:31:24.
how can i solve it
The @timestamp field is always in UTC timezone, which is what Elasticsearch requires, which may explain the offset compared to local time that you are seeing.
yes i figured out it was because of difference daylight now how can i solve this problem and make my log time matches with @timestamp field
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.