客服电话
APP下载
迪恩网络APP
随时随地掌握行业动态
官方微信
扫描二维码
关注迪恩网络微信公众号
|
日志里一般都会有时间,格式如“2020-09-04 10:08:08”,怎么转成毫秒呢,格式如“1598609188959”? 假如我们的日志里仅有一个时间字段,因为我们这里转换前是没有毫秒的,所以可以直接转成秒后补3个0。直接看配置: input{ beats { port => "5044" } } filter{ mutate { add_field => { "requestTimestamp" => "%{message}" } } date{ match => ["requestTimestamp","YYYY-MM-dd HH:mm:ss"] target =>"requestTimestamp" } ruby{ code => "event.set('requestTimestamp',event.get('requestTimestamp').to_i*1000)" } } output { stdout { codec => rubydebug } }
假设filebeat整不断往logstash输送时间日志,我们启动后看到的将是这样的: { "requestTimestamp" => 1599211641000, "@timestamp" => 2020-09-04T09:27:25.754Z, "message" => "2020-09-04 17:27:21", "log" => { "offset" => 483, "file" => { "path" => "D:\\wlf\\logs\\cdr-200200006022-08971-2020090417.0.log" } }, "@version" => "1", "host" => { "name" => "wulf00" }, "agent" => { "id" => "ae375dc0-d6e2-488c-be87-2544c05b1242", "name" => "wulf00", "hostname" => "wulf00", "ephemeral_id" => "8f29c3c9-08ea-4f6b-9508-ae187ec22f0b", "version" => "7.9.0", "type" => "filebeat" }, "ecs" => { "version" => "1.5.0" }, "input" => { "type" => "log" }, "tags" => [ [0] "beats_input_codec_plain_applied" ] } { "requestTimestamp" => 1599211656000, "@timestamp" => 2020-09-04T09:27:40.758Z, "message" => "2020-09-04 17:27:36", "log" => { "offset" => 504, "file" => { "path" => "D:\\wlf\\logs\\cdr-200200006022-08971-2020090417.0.log" } }, "@version" => "1", "host" => { "name" => "wulf00" }, "agent" => { "id" => "ae375dc0-d6e2-488c-be87-2544c05b1242", "name" => "wulf00", "hostname" => "wulf00", "ephemeral_id" => "8f29c3c9-08ea-4f6b-9508-ae187ec22f0b", "version" => "7.9.0", "type" => "filebeat" }, "ecs" => { "version" => "1.5.0" }, "input" => { "type" => "log" }, "tags" => [ [0] "beats_input_codec_plain_applied" ]
以上是时间格式为“YYYY-MM-dd HH:mm:ss”的情况,那么“YYYY-MM-dd HH:mm:ss SSS"的情况又如何呢?改下logstash配置文件: input{ beats { port => "5044" } } filter{ mutate { add_field => { "requestTimestamp" => "%{message}" } } date{ match => ["requestTimestamp","YYYY-MM-dd HH:mm:ss.SSS"] target =>"requestTimestamp" } ruby{ code => "event.set('requestTimestamp',(event.get('requestTimestamp').to_f.round(3)*1000).to_i)" } } output { stdout { codec => rubydebug } }
重启logstash,得到如下结果: { "input" => { "type" => "log" }, "@timestamp" => 2020-09-04T09:45:39.448Z, "host" => { "name" => "wulf00" }, "log" => { "offset" => 75, "file" => { "path" => "D:\\wlf\\logs\\cdr-200200006022-08971-2020090417.0.log" } }, "ecs" => { "version" => "1.5.0" }, "requestTimestamp" => 1599212733416, "message" => "2020-09-04 17:45:33.416", "agent" => { "type" => "filebeat", "version" => "7.9.0", "ephemeral_id" => "8f29c3c9-08ea-4f6b-9508-ae187ec22f0b", "hostname" => "wulf00", "id" => "ae375dc0-d6e2-488c-be87-2544c05b1242", "name" => "wulf00" }, "@version" => "1", "tags" => [ [0] "beats_input_codec_plain_applied" ] } { "input" => { "type" => "log" }, "@timestamp" => 2020-09-04T09:44:54.172Z, "host" => { "name" => "wulf00" }, "log" => { "offset" => 0, "file" => { "path" => "D:\\wlf\\logs\\cdr-200200006022-08971-2020090417.0.log" } }, "ecs" => { "version" => "1.5.0" }, "requestTimestamp" => 1599212688414, "message" => "2020-09-04 17:44:48.414", "agent" => { "type" => "filebeat", "version" => "7.9.0", "ephemeral_id" => "8f29c3c9-08ea-4f6b-9508-ae187ec22f0b", "hostname" => "wulf00", "id" => "ae375dc0-d6e2-488c-be87-2544c05b1242", "name" => "wulf00" }, "@version" => "1", "tags" => [ [0] "beats_input_codec_plain_applied" ] }
|
2023-10-27
2022-08-15
2022-08-17
2022-09-23
2022-08-13
六六分期app的软件客服如何联系?不知道吗?加qq群【895510560】即可!标题:六六分期
今天小编告诉大家如何处理win10系统火狐flash插件总是崩溃的问题,可能很多用户都不知
今天小编告诉大家如何对win10系统删除桌面回收站图标进行设置,可能很多用户都不知道
今天小编告诉大家如何对win10系统电脑设置节能降温的设置方法,想必大家都遇到过需要
我们在使用xp系统的过程中,经常需要对xp系统无线网络安装向导设置进行设置,可能很多
今天小编告诉大家如何处理win7系统玩cf老是与主机连接不稳定的问题,可能很多用户都不
电脑对日常生活的重要性小编就不多说了,可是一旦碰到win7系统设置cf烟雾头的问题,很
我们在日常使用电脑的时候,有的小伙伴们可能在打开应用的时候会遇见提示应用程序无法
今天小编告诉大家如何对win7系统打开vcf文件进行设置,可能很多用户都不知道怎么对win
今天小编告诉大家如何对win10系统s4开启USB调试模式进行设置,可能很多用户都不知道怎
请发表评论