Home Explore Help
Sign In
Database
/
manticoresearch
mirror of https://github.com/manticoresoftware/manticoresearch.git
2
0
Fork 0
Files Issues 0 Wiki
Branch: master
Branches Tags
manticoresearch
/
.translation-cache
/
Integration
/
Fluentbit.md.json

Fluentbit.md.json 17 KB
Permalink History Raw

1234567891011121314151617 
  1. {
    2. 

  2.     "09bcc544321aa64e31021b213e69f0ef6460bf389a332f9773d0fcd11772bf9e": {
    3. 

  3.         "original": "# Integration with Fluent Bit\n\n> NOTE: The integration with Fluent Bit requires [Manticore Buddy](../Installation/Manticore_Buddy.md). If it doesn't work, make sure Buddy is installed.\n\n[Fluent Bit](https://fluentbit.io/) is an open source, cross-platform log processor that can aggregate data from many sources and ship it to multiple destinations. You can feed Fluent Bit outputs directly into Manticore to make the collected data searchable in real time.\n\nThe following walkthrough indexes Debian's `dpkg.log` with Fluent Bit and Manticore.\n\n## Example log structure\n\nCODE_BLOCK_0\n\n## Fluent Bit configuration\n\nCreate a configuration file such as `fluent-bit.conf`:\n\nCODE_BLOCK_1\n\n- The `[SERVICE]` block starts Fluent Bit in daemon mode, which is convenient for Docker-based setups. Disable the daemon flag if you want to run it in the foreground.\n- `inotify_watcher` is turned off to avoid file notification limitations inside containers.\n- The output plugin (`name es`) can talk to Manticore's HTTP endpoint on port `9308`.\n- `index` defines the automatic table name Manticore creates when the first batch arrives.\n\nRun Fluent Bit with this configuration and it will tail `dpkg.log`, then forward each line to Manticore.\n\n## Running Fluent Bit\n\nStore the configuration as `fluent-bit.conf`, then launch Fluent Bit:\n\nCODE_BLOCK_2\n\nTo run it in Docker, mount the log file (read-only) and the configuration:\n\nCODE_BLOCK_3\n\n## Fluent Bit results\n\nAfter ingestion begins, Manticore automatically creates the `dpkg_log` table. Here is the table definition and sample data:\n\nCODE_BLOCK_4\n\n## Conclusion\n\nWith this lightweight pipeline, Fluent Bit handles log collection and delivery while Manticore indexes the events for fast search and analytics. The approach works equally well for other log sources\u2014just add more inputs and reuse the same Elasticsearch-compatible output pointed at your Manticore cluster.\n",
    4. 

  4.         "translations": {
    5. 

  5.             "chinese": "# \u4e0e Fluent Bit \u7684\u96c6\u6210\n\n> \u6ce8\u610f\uff1a\u4e0e Fluent Bit \u7684\u96c6\u6210\u9700\u8981 [Manticore Buddy](../Installation/Manticore_Buddy.md)\u3002\u5982\u679c\u4e0d\u8d77\u4f5c\u7528\uff0c\u8bf7\u786e\u4fdd\u5df2\u5b89\u88c5 Buddy\u3002\n\n[Fluent Bit](https://fluentbit.io/) \u662f\u4e00\u4e2a\u5f00\u6e90\u7684\u8de8\u5e73\u53f0\u65e5\u5fd7\u5904\u7406\u5668\uff0c\u53ef\u4ee5\u4ece\u8bb8\u591a\u6765\u6e90\u805a\u5408\u6570\u636e\u5e76\u5c06\u5176\u53d1\u9001\u5230\u591a\u4e2a\u76ee\u7684\u5730\u3002\u4f60\u53ef\u4ee5\u5c06 Fluent Bit \u7684\u8f93\u51fa\u76f4\u63a5\u8f93\u5165 Manticore\uff0c\u4f7f\u6536\u96c6\u7684\u6570\u636e\u80fd\u591f\u5b9e\u65f6\u641c\u7d22\u3002\n\n\u4ee5\u4e0b\u64cd\u4f5c\u6307\u5357\u6f14\u793a\u4e86\u5982\u4f55\u4f7f\u7528 Fluent Bit \u548c Manticore \u5bf9 Debian \u7684 `dpkg.log` \u8fdb\u884c\u7d22\u5f15\u3002\n\n## \u793a\u4f8b\u65e5\u5fd7\u7ed3\u6784\n\nCODE_BLOCK_0\n\n## Fluent Bit \u914d\u7f6e\n\n\u521b\u5efa\u4e00\u4e2a\u914d\u7f6e\u6587\u4ef6\uff0c\u4f8b\u5982 `fluent-bit.conf`\uff1a\n\nCODE_BLOCK_1\n\n- `[SERVICE]` \u5757\u4ee5\u5b88\u62a4\u8fdb\u7a0b\u6a21\u5f0f\u542f\u52a8 Fluent Bit\uff0c\u8fd9\u5bf9\u4e8e\u57fa\u4e8e Docker \u7684\u8bbe\u7f6e\u975e\u5e38\u65b9\u4fbf\u3002\u5982\u679c\u4f60\u60f3\u5728\u524d\u53f0\u8fd0\u884c\uff0c\u8bf7\u7981\u7528\u5b88\u62a4\u8fdb\u7a0b\u6807\u5fd7\u3002\n- `inotify_watcher` \u5df2\u5173\u95ed\uff0c\u4ee5\u907f\u514d\u5bb9\u5668\u5185\u90e8\u7684\u6587\u4ef6\u901a\u77e5\u9650\u5236\u3002\n- \u8f93\u51fa\u63d2\u4ef6 (`name es`) \u53ef\u4ee5\u901a\u8fc7\u7aef\u53e3 `9308` \u4e0e Manticore \u7684 HTTP \u7aef\u70b9\u901a\u4fe1\u3002\n- `index` \u5b9a\u4e49\u4e86\u5f53\u7b2c\u4e00\u6279\u6570\u636e\u5230\u8fbe\u65f6 Manticore \u81ea\u52a8\u521b\u5efa\u7684\u8868\u540d\u3002\n\n\u4f7f\u7528\u6b64\u914d\u7f6e\u8fd0\u884c Fluent Bit\uff0c\u5b83\u5c06\u8ddf\u8e2a `dpkg.log`\uff0c\u7136\u540e\u5c06\u6bcf\u4e00\u884c\u8f6c\u53d1\u5230 Manticore\u3002\n\n## \u8fd0\u884c Fluent Bit\n\n\u5c06\u914d\u7f6e\u4fdd\u5b58\u4e3a `fluent-bit.conf`\uff0c\u7136\u540e\u542f\u52a8 Fluent Bit\uff1a\n\nCODE_BLOCK_2\n\n\u8981\u5728 Docker \u4e2d\u8fd0\u884c\uff0c\u8bf7\u6302\u8f7d\u65e5\u5fd7\u6587\u4ef6\uff08\u53ea\u8bfb\uff09\u548c\u914d\u7f6e\uff1a\n\nCODE_BLOCK_3\n\n## Fluent Bit \u7ed3\u679c\n\n\u6570\u636e\u6444\u5165\u5f00\u59cb\u540e\uff0cManticore \u4f1a\u81ea\u52a8\u521b\u5efa `dpkg_log` \u8868\u3002\u4ee5\u4e0b\u662f\u8868\u5b9a\u4e49\u548c\u793a\u4f8b\u6570\u636e\uff1a\n\nCODE_BLOCK_4\n\n## \u7ed3\u8bba\n\n\u901a\u8fc7\u8fd9\u4e2a\u8f7b\u91cf\u7ea7\u7684\u7ba1\u9053\uff0cFluent Bit \u5904\u7406\u65e5\u5fd7\u6536\u96c6\u548c\u4f20\u8f93\uff0c\u800c Manticore \u5bf9\u4e8b\u4ef6\u8fdb\u884c\u7d22\u5f15\u4ee5\u5b9e\u73b0\u5feb\u901f\u641c\u7d22\u548c\u5206\u6790\u3002\u8fd9\u79cd\u65b9\u6cd5\u540c\u6837\u9002\u7528\u4e8e\u5176\u4ed6\u65e5\u5fd7\u6e90\u2014\u2014\u53ea\u9700\u6dfb\u52a0\u66f4\u591a\u8f93\u5165\u5e76\u91cd\u7528\u6307\u5411\u4f60 Manticore \u96c6\u7fa4\u7684\u76f8\u540c Elasticsearch \u517c\u5bb9\u8f93\u51fa\u3002\n",
    6. 

  6.             "russian": "# \u0418\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u044f \u0441 Fluent Bit\n\n> \u041f\u0420\u0418\u041c\u0415\u0427\u0410\u041d\u0418\u0415: \u0418\u043d\u0442\u0435\u0433\u0440\u0430\u0446\u0438\u044f \u0441 Fluent Bit \u0442\u0440\u0435\u0431\u0443\u0435\u0442 [Manticore Buddy](../Installation/Manticore_Buddy.md). \u0415\u0441\u043b\u0438 \u043e\u043d\u0430 \u043d\u0435 \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442, \u0443\u0431\u0435\u0434\u0438\u0442\u0435\u0441\u044c, \u0447\u0442\u043e Buddy \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043b\u0435\u043d.\n\n[Fluent Bit](https://fluentbit.io/) \u2014 \u044d\u0442\u043e \u043a\u0440\u043e\u0441\u0441\u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u0435\u043d\u043d\u044b\u0439 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u043e\u0440 \u043b\u043e\u0433\u043e\u0432 \u0441 \u043e\u0442\u043a\u0440\u044b\u0442\u044b\u043c \u0438\u0441\u0445\u043e\u0434\u043d\u044b\u043c \u043a\u043e\u0434\u043e\u043c, \u043a\u043e\u0442\u043e\u0440\u044b\u0439 \u043c\u043e\u0436\u0435\u0442 \u0430\u0433\u0440\u0435\u0433\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0434\u0430\u043d\u043d\u044b\u0435 \u0438\u0437 \u043c\u043d\u043e\u0436\u0435\u0441\u0442\u0432\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432 \u0438 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c \u0438\u0445 \u0432 \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0435 \u043c\u0435\u0441\u0442\u0430 \u043d\u0430\u0437\u043d\u0430\u0447\u0435\u043d\u0438\u044f. \u0412\u044b \u043c\u043e\u0436\u0435\u0442\u0435 \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u044f\u0442\u044c \u0432\u044b\u0432\u043e\u0434 Fluent Bit \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u0432 Manticore, \u0447\u0442\u043e\u0431\u044b \u0441\u043e\u0431\u0440\u0430\u043d\u043d\u044b\u0435 \u0434\u0430\u043d\u043d\u044b\u0435 \u0441\u0442\u0430\u043b\u0438 \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0434\u043b\u044f \u043f\u043e\u0438\u0441\u043a\u0430 \u0432 \u0440\u0435\u0430\u043b\u044c\u043d\u043e\u043c \u0432\u0440\u0435\u043c\u0435\u043d\u0438.\n\n\u0421\u043b\u0435\u0434\u0443\u044e\u0449\u0435\u0435 \u043f\u043e\u0448\u0430\u0433\u043e\u0432\u043e\u0435 \u0440\u0443\u043a\u043e\u0432\u043e\u0434\u0441\u0442\u0432\u043e \u0438\u043d\u0434\u0435\u043a\u0441\u0438\u0440\u0443\u0435\u0442 `dpkg.log` Debian \u0441 \u043f\u043e\u043c\u043e\u0449\u044c\u044e Fluent Bit \u0438 Manticore.\n\n## \u041f\u0440\u0438\u043c\u0435\u0440 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b \u043b\u043e\u0433\u0430\n\nCODE_BLOCK_0\n\n## \u041a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044f Fluent Bit\n\n\u0421\u043e\u0437\u0434\u0430\u0439\u0442\u0435 \u0444\u0430\u0439\u043b \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0438, \u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440 `fluent-bit.conf`:\n\nCODE_BLOCK_1\n\n- \u0411\u043b\u043e\u043a `[SERVICE]` \u0437\u0430\u043f\u0443\u0441\u043a\u0430\u0435\u0442 Fluent Bit \u0432 \u0440\u0435\u0436\u0438\u043c\u0435 \u0434\u0435\u043c\u043e\u043d\u0430, \u0447\u0442\u043e \u0443\u0434\u043e\u0431\u043d\u043e \u0434\u043b\u044f Docker-\u0441\u0440\u0435\u0434. \u041e\u0442\u043a\u043b\u044e\u0447\u0438\u0442\u0435 \u0444\u043b\u0430\u0433 \u0434\u0435\u043c\u043e\u043d\u0430, \u0435\u0441\u043b\u0438 \u0445\u043e\u0442\u0438\u0442\u0435 \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c \u0435\u0433\u043e \u0432 \u0438\u043d\u0442\u0435\u0440\u0430\u043a\u0442\u0438\u0432\u043d\u043e\u043c \u0440\u0435\u0436\u0438\u043c\u0435.\n- `inotify_watcher` \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d, \u0447\u0442\u043e\u0431\u044b \u0438\u0437\u0431\u0435\u0436\u0430\u0442\u044c \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0439 \u043d\u0430 \u0443\u0432\u0435\u0434\u043e\u043c\u043b\u0435\u043d\u0438\u044f \u043e \u0444\u0430\u0439\u043b\u0430\u0445 \u0432\u043d\u0443\u0442\u0440\u0438 \u043a\u043e\u043d\u0442\u0435\u0439\u043d\u0435\u0440\u043e\u0432.\n- \u041f\u043b\u0430\u0433\u0438\u043d \u0432\u044b\u0432\u043e\u0434\u0430 (`name es`) \u043c\u043e\u0436\u0435\u0442 \u043e\u0431\u0449\u0430\u0442\u044c\u0441\u044f \u0441 HTTP-\u044d\u043d\u0434\u043f\u043e\u0438\u043d\u0442\u043e\u043c Manticore \u043d\u0430 \u043f\u043e\u0440\u0442\u0443 `9308`.\n- `index` \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u044f\u0435\u0442 \u0438\u043c\u044f \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0441\u043e\u0437\u0434\u0430\u0432\u0430\u0435\u043c\u043e\u0439 \u0442\u0430\u0431\u043b\u0438\u0446\u044b \u0432 Manticore \u043f\u0440\u0438 \u043f\u043e\u0441\u0442\u0443\u043f\u043b\u0435\u043d\u0438\u0438 \u043f\u0435\u0440\u0432\u043e\u0439 \u043f\u0430\u0440\u0442\u0438\u0438 \u0434\u0430\u043d\u043d\u044b\u0445.\n\n\u0417\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u0435 Fluent Bit \u0441 \u044d\u0442\u043e\u0439 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u0435\u0439, \u0438 \u043e\u043d \u0431\u0443\u0434\u0435\u0442 \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0442\u044c `dpkg.log`, \u0430 \u0437\u0430\u0442\u0435\u043c \u043f\u0435\u0440\u0435\u0441\u044b\u043b\u0430\u0442\u044c \u043a\u0430\u0436\u0434\u0443\u044e \u0441\u0442\u0440\u043e\u043a\u0443 \u0432 Manticore.\n\n## \u0417\u0430\u043f\u0443\u0441\u043a Fluent Bit\n\n\u0421\u043e\u0445\u0440\u0430\u043d\u0438\u0442\u0435 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044e \u043a\u0430\u043a `fluent-bit.conf`, \u0437\u0430\u0442\u0435\u043c \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u0435 Fluent Bit:\n\nCODE_BLOCK_2\n\n\u0427\u0442\u043e\u0431\u044b \u0437\u0430\u043f\u0443\u0441\u0442\u0438\u0442\u044c \u0435\u0433\u043e \u0432 Docker, \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0438\u0442\u0435 \u0444\u0430\u0439\u043b \u043b\u043e\u0433\u0430 (\u0442\u043e\u043b\u044c\u043a\u043e \u0434\u043b\u044f \u0447\u0442\u0435\u043d\u0438\u044f) \u0438 \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044e:\n\nCODE_BLOCK_3\n\n## \u0420\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0440\u0430\u0431\u043e\u0442\u044b Fluent Bit\n\n\u041f\u043e\u0441\u043b\u0435 \u043d\u0430\u0447\u0430\u043b\u0430 \u043f\u0440\u0438\u0435\u043c\u0430 \u0434\u0430\u043d\u043d\u044b\u0445 Manticore \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u0441\u043e\u0437\u0434\u0430\u0435\u0442 \u0442\u0430\u0431\u043b\u0438\u0446\u0443 `dpkg_log`. \u0412\u043e\u0442 \u0435\u0435 \u043e\u043f\u0440\u0435\u0434\u0435\u043b\u0435\u043d\u0438\u0435 \u0438 \u043f\u0440\u0438\u043c\u0435\u0440 \u0434\u0430\u043d\u043d\u044b\u0445:\n\nCODE_BLOCK_4\n\n## \u0417\u0430\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435\n\n\u0421 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u044d\u0442\u043e\u0433\u043e \u043b\u0435\u0433\u043a\u043e\u0432\u0435\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u043d\u0432\u0435\u0439\u0435\u0440\u0430 Fluent Bit \u043e\u0431\u0440\u0430\u0431\u0430\u0442\u044b\u0432\u0430\u0435\u0442 \u0441\u0431\u043e\u0440 \u0438 \u0434\u043e\u0441\u0442\u0430\u0432\u043a\u0443 \u043b\u043e\u0433\u043e\u0432, \u0430 Manticore \u0438\u043d\u0434\u0435\u043a\u0441\u0438\u0440\u0443\u0435\u0442 \u0441\u043e\u0431\u044b\u0442\u0438\u044f \u0434\u043b\u044f \u0431\u044b\u0441\u0442\u0440\u043e\u0433\u043e \u043f\u043e\u0438\u0441\u043a\u0430 \u0438 \u0430\u043d\u0430\u043b\u0438\u0442\u0438\u043a\u0438. \u042d\u0442\u043e\u0442 \u043f\u043e\u0434\u0445\u043e\u0434 \u043e\u0434\u0438\u043d\u0430\u043a\u043e\u0432\u043e \u0445\u043e\u0440\u043e\u0448\u043e \u0440\u0430\u0431\u043e\u0442\u0430\u0435\u0442 \u0438 \u0441 \u0434\u0440\u0443\u0433\u0438\u043c\u0438 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0430\u043c\u0438 \u043b\u043e\u0433\u043e\u0432 \u2014 \u043f\u0440\u043e\u0441\u0442\u043e \u0434\u043e\u0431\u0430\u0432\u044c\u0442\u0435 \u0431\u043e\u043b\u044c\u0448\u0435 \u0432\u0445\u043e\u0434\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432 \u0438 \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u043e \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0439\u0442\u0435 \u0442\u043e\u0442 \u0436\u0435 \u0441\u043e\u0432\u043c\u0435\u0441\u0442\u0438\u043c\u044b\u0439 \u0441 Elasticsearch \u0432\u044b\u0432\u043e\u0434, \u043d\u0430\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0439 \u043d\u0430 \u0432\u0430\u0448 \u043a\u043b\u0430\u0441\u0442\u0435\u0440 Manticore.\n"
    7. 

  7.         },
    8. 

  8.         "is_code_or_comment": false,
    9. 

  9.         "model": "deepseek/deepseek-v3.2",
    10. 

  10.         "updated_at": 1767865539
    11. 

  11.     },
    12. 

  12.     "__meta": {
    13. 

  13.         "source_text": "# Integration with Fluent Bit\n\n> NOTE: The integration with Fluent Bit requires [Manticore Buddy](../Installation/Manticore_Buddy.md). If it doesn't work, make sure Buddy is installed.\n\n[Fluent Bit](https://fluentbit.io/) is an open source, cross-platform log processor that can aggregate data from many sources and ship it to multiple destinations. You can feed Fluent Bit outputs directly into Manticore to make the collected data searchable in real time.\n\nThe following walkthrough indexes Debian's `dpkg.log` with Fluent Bit and Manticore.\n\n## Example log structure\n\n```\n2023-05-31 10:42:55 status triggers-awaited ca-certificates-java:all 20190405ubuntu1.1\n2023-05-31 10:42:55 trigproc libc-bin:amd64 2.31-0ubuntu9.9 <none>\n2023-05-31 10:42:55 status half-configured libc-bin:amd64 2.31-0ubuntu9.9\n2023-05-31 10:42:55 status installed libc-bin:amd64 2.31-0ubuntu9.9\n2023-05-31 10:42:55 trigproc systemd:amd64 245.4-4ubuntu3.21 <none>\n```\n\n## Fluent Bit configuration\n\nCreate a configuration file such as `fluent-bit.conf`:\n\n```\n[SERVICE]\n    flush        1\n    daemon       On\n    log_level    info\n\n[INPUT]\n    name tail\n    path /var/log/dpkg.log\n    inotify_watcher false\n    read_from_head true\n\n[OUTPUT]\n    name es\n    match *\n    host 127.0.0.1\n    port 9308\n    index dpkg_log\n```\n\n- The `[SERVICE]` block starts Fluent Bit in daemon mode, which is convenient for Docker-based setups. Disable the daemon flag if you want to run it in the foreground.\n- `inotify_watcher` is turned off to avoid file notification limitations inside containers.\n- The output plugin (`name es`) can talk to Manticore's HTTP endpoint on port `9308`.\n- `index` defines the automatic table name Manticore creates when the first batch arrives.\n\nRun Fluent Bit with this configuration and it will tail `dpkg.log`, then forward each line to Manticore.\n\n## Running Fluent Bit\n\nStore the configuration as `fluent-bit.conf`, then launch Fluent Bit:\n\n```\nfluent-bit -c fluent-bit.conf\n```\n\nTo run it in Docker, mount the log file (read-only) and the configuration:\n\n```\ndocker run --rm -v /var/log/dpkg.log:/var/log/dpkg.log:ro \\\n  -v $(pwd)/fluent-bit.conf:/fluent-bit/etc/fluent-bit.conf:ro \\\n  fluent/fluent-bit:latest -c /fluent-bit/etc/fluent-bit.conf\n```\n\n## Fluent Bit results\n\nAfter ingestion begins, Manticore automatically creates the `dpkg_log` table. Here is the table definition and sample data:\n\n```\nmysql> DESCRIBE dpkg_log;\n+-------------+--------+----------------+\n| Field       | Type   | Properties     |\n+-------------+--------+----------------+\n| id          | bigint |                |\n| @timestamp  | text   | indexed stored |\n| log         | text   | indexed stored |\n+-------------+--------+----------------+\n\nmysql> SELECT * FROM dpkg_log LIMIT 3\\G\n*************************** 1. row ***************************\nid: 7856533729353662465\n@timestamp: 2023-08-04T15:09:21.191Z\nlog: 2023-06-05 14:03:04 startup archives install\n*************************** 2. row ***************************\nid: 7856533729353662466\n@timestamp: 2023-08-04T15:09:21.191Z\nlog: 2023-06-05 14:03:04 install base-passwd:amd64 <none> 3.5.47\n*************************** 3. row ***************************\nid: 7856533729353662467\n@timestamp: 2023-08-04T15:09:21.191Z\nlog: 2023-06-05 14:03:04 status half-installed base-passwd:amd64 3.5.47\n```\n\n## Conclusion\n\nWith this lightweight pipeline, Fluent Bit handles log collection and delivery while Manticore indexes the events for fast search and analytics. The approach works equally well for other log sources\u2014just add more inputs and reuse the same Elasticsearch-compatible output pointed at your Manticore cluster.\n",
    14. 

  14.         "updated_at": 1768530797,
    15. 

  15.         "source_md5": "51febee30ed13676db751b9a37949c4c"
    16. 

  16.     }
    17. 

  17. }
    18.