Hi All,
I have successfully extracted our date and used it to override the @timestamp, however because our application uses microseconds and Elasticsearch only supports milliseconds, my logs for some events are now appearing out of order.
I've stored microseconds in a separate field, however I am aware it's not currently possible to view the logs in any other order in Kibana > Discover than timestamp, my question is. Is there a way I can use the log order or my microseconds field as a secondary sort field at the Logstash level before the logs are transmitted?
Thanks!