Hi everyone,
I store syslog into elasticsearch and overview data on Kibana.
I found that the date of @timestamp and _index doesn't match.
The _index is default logstash-* and it seems would automatically adjust from @timestamp.
my doubt is that whether the _index is using UTC, and how to solve it.
this one looks doesn't match:
following data is match:
thank you in advance : )
Timestamps in Kibana are translated into the browsers timezone, so what zone are you in?
I am in GMT+8
That that looks right.
The first timestamp minus 8 hours would mean the 24th.
could I change the _index to my timezone?
Elasticsearch and Logstash use UTC anyway, so it won't do anything.
OK, thanks for your reply : )
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.