hello,
The time difference is nine hours.
What is the reason?
The system is not a reason.
It seems you have not parsed out the timestamp from the log event, which probably means the @timestamp field shows the time it was processed by Logstash. This timestamp is store in UTC in Elasticsearch, but adjusted to your local timezone in Kibana, which is why it is differing so much from the raw timestamp in the log event.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.