Hi Team,
i am facing the issue of different timezones. Splunk timezone is CET but log event timezone is coming as UTC in my localhost access logs but other log event are displaying the timezone in sync with CET timezone.
Splunk timestamp is 6/11/13 11:31:44:000 AM Event log timestamp is [11/Jun/2013:09:31:44 +0000]
I need event timestamp in CET timezone. Is there any way to do it in search query by making offset of 2 hours
Kindly help.
Thanks