Hello,
I am attempting to parse out a timestamp from syslog. The timestamp comes out to
2024-02-04 02:04:03+00:00
Using the date filter how would I be able to take into account the suffix "+00:00"
Try
date {
match => [ "message", "yyyy-MM-dd HH:mm:ssZZ" ]
# target => "@timestamp"
}
1 Like
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.