![]() ![]() If the time is zone is different, please use 'Today' in kibana time window to check your recent documents.Īlternatively, you can also index your timestamp field with UTC timezone(or your desired time zone) in ES. You can do so by (kibana) Management Tab ->Advance Settings ->dateFormat:tz Please check if the time zone in your ES docs is same as that of Kibana. ![]() Would like to know anyone facing a similar issue and welcoming solution for it.Answer1: If we filter for four hours we can see multiple servers with the different time value in the display. We could see indexing is happening properly in Elastic Search but while filtering the display option for an hour only throwing results for 2 servers. We have checked filebeat configuration in each IIS servers and found same configuration setup also verified IIS log time format and other configurations. While filtering logs for past hour we could notice only 2 server logs were displayed. We are fetching log from 8 IIS server and parsing via Logstash to Elastic search Kibana. We are facing a time mismatch in displaying logs from different servers. We are having ELK setup with Kibana version 5.6.10. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
January 2023
Categories |