logstash -> elasticsearch 处理 bunyan(json format) log

filter {
    json {
        source => "message"
    }
    
    date {
        match => ["time", "ISO8601"]
        target => "@timestamp"
    }
}

output {
    elasticsearch {
        hosts => ["localhost"]
        index => "%{type}-%{dateStr}"
        codec => json
    }
}

• https://www.elastic.co/guide/en/logstash/current/plugins-filters-json.html
• https://www.elastic.co/guide/en/logstash/current/plugins-filters-date.html