Category: ELK

Elasticsearch is a search engine based on the Lucene library. It provides a distributed, multitenant-capable full-text search engine with an HTTP web interface and schema-free JSON documents. Elasticsearch is developed in Java and is dual-licensed under the source-available Server Side Public License and the Elastic license,while other parts fall under the proprietary (source-available) Elastic License. Official clients are available in Java, .NET (C#), PHP, Python, Apache Groovy, Ruby and many other languages.According to the DB-Engines ranking, Elasticsearch is the most popular enterprise search engine.

Logstash converts the @timestamp time to the local time.

Logstash converts the @timestamp time to the local time. If the local time zone is the Beijing time zone, add the following filter to solve the problem. Remember, date { match => [ “mytime”,”yyyy-MM-dd HH:mm:ss” ] } can’t be less

May 1, 2019By Simo ELK @timestamp, localtime, logstashLeave a Comment