Hi,
my system writes a log with this date format - 2018-09-13T00:00:01.369623+00:00
what is the correct format I should use for the time codec?
I tried YYYY-MM-dd HH:mm:ss.SSSZZ, but it not work (
This one worked for me.
Date filter:
date {
match => ["asos_heka_time_stamp", "ISO8601"]
target => "@timestamp"
}
My Log:
2018-08-03T19:09:08.954098+00:00 authpriv.notice: sudo: heka : TTY=unknown ; PWD=/opt/ampli/var/run/heka ; USER=root ; COMMAND=/usr/bin/python /opt/ampli/apps/heka/scripts/processoutput.py [CPU_METRIC]
Hope this helped you.
Thank you!! It work fine.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.