Logstash - Syslog Timestamp

erikg · February 20, 2024, 6:15pm

Hello,

I am attempting to parse out a timestamp from syslog. The timestamp comes out to
2024-02-04 02:04:03+00:00

Using the date filter how would I be able to take into account the suffix "+00:00"

Rios · February 20, 2024, 9:38pm

Try

date {
        match => [ "message",  "yyyy-MM-dd HH:mm:ssZZ" ]
       # target => "@timestamp"
 }

system · March 19, 2024, 9:38pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Logstash is not converting a syslog date to date Logstash	5	985	December 14, 2017
Unable to parse the date in syslog log message Logstash	3	360	October 17, 2019
Incoming syslog date missing in timestamp Logstash	2	226	August 25, 2022
@timestamp not updated using date filter Logstash	3	483	October 3, 2019
Syslog and Auth Logs DateParseFailure Logstash	2	694	December 3, 2018