Please tell me.
When sending a log to logstash, inside the log there is a date of its generation by some application.This date is read by me in @timestamp inside logstash.Is it possible to replace the time displayed as the time to receive the log in kibana by this time? And if possible, at what stage(in logstash, elasticsearch or kibana)? Can you give an example of setting, if such actions are possible?

1 Answers 1

Still relevant? Just today I started picking it all after my question.
The date definition is done at the logstash stage:

filter {
  grok {
    type=>"test"
    pattern=>"% {TIMESTAMP_ISO8601: timestamp}"
  }
  date {
    type=>"test"
    match =>["timestamp","yyyy-mm-dd HH: mm: ss"]
  }
}


I have my own custom log with a date like"2014-01-22 17:21:00"