Use correct parsed timestamp

At the moment, we're adding an extra field called "logdate" rather
than using the built-in timestamp.  This makes things go to the
right field.

Change-Id: I5e56d01692b7205418e6aba89d1c7c44fa1abfef

elk_metrics_6x/templates/logstash-pipelines.yml.j2

@@ -183,7 +183,10 @@
                   "^%{CISCOTIMESTAMP:journalddate}%{SPACE}%{SYSLOGHOST:host}%{SPACE}%{SYSLOGPROG:prog}%{SPACE}%{TIMESTAMP_ISO8601:logdate}%{SPACE}%{NUMBER:pid}%{SPACE}%{NOTSPACE:loglevel}%{SPACE}%{NOTSPACE:module}%{SPACE}%{GREEDYDATA:logmessage}"
                 ]
               }
-              add_field => { "received_at" => "%{@timestamp}" }
+            }
+            date {
+              match => [ "logdate", ISO8601 ]
+              remove_field => [ "logdate" ]
             }
             if "nova" in [tags] {
               mutate {