We compared Amazon CloudWatch and Graylog based on our users' reviews in five categories. We reviewed all of the data and you can find the conclusion below.
Features: Amazon CloudWatch users liked the solution’s simplicity, intuitive interface, and ability to handle large workloads. Users also praised CloudWatch’s comprehensive monitoring and alerts. Graylog stands out with its exceptional search functions, seamless integration with Elasticsearch, and real-time data access. Some reviews mentioned that Amazon CloudWatch could improve performance and dashboard visualization. Others noted that the solution lacked compatibility with some databases. Graylog could benefit from additional customization options and an improved rule-creation process.
Service and Support: Customers generally have positive opinions about Amazon's customer service. They commended the support team for its availability and timely issue resolution. Graylog's customer service is generally well-regarded, with reviewers noting effective solutions and satisfactory experiences. While response times may differ, Graylog's support is considered superior compared to that of other products.
Ease of Deployment: Amazon CloudWatch is generally described as easy to set up. Some Graylog users said the setup was easy. Other reviewers faced challenges, but these were easily resolved with help from the vendor’s support staff. Graylog is easier to set up in smaller environments, but it could get complicated in large clusters.
Pricing: Amazon CloudWatch offers a flexible pricing structure based on usage and processing, without any separate licensing cost. Some users said that scaling up can be costly due to the need for additional storage space. Graylog offers an enterprise edition and an open-source option with a daily capacity restriction. Some users said that data costs can be expensive.
ROI: Amazon CloudWatch offers a return on investment by minimizing the need for manual monitoring. Graylog can offer some cost savings. The precise ROI may vary depending on the organization’s size and use case.
"We can create events and alerts. We use the information to dive down into the infrastructure performance."
"The most valuable feature of Amazon CloudWatch is intrusion prevention."
"You can enable alarms and metrics, and it has robust integration with AWS services. You can also trigger events. For example, if the CPU utilization is above 80%, it can launch a new instance for you."
"I have found the memory metrics and the CPU metrics valuable."
"The solution effectively monitors golden signals like CPU, page requests, and queues."
"Amazon CloudWatch is a cheap and easy-to-use solution."
"It is a robust analytical tool and it goes beyond mere functionality and extends into the realm of providing comprehensive insights."
"The most valuable feature of Amazon CloudWatch is reliability."
"Message forwarding through the in-built module."
"Allowing us to set up alerts and integrate with platforms we already use, such as Slack and OpsGenie to alert users of these errors proactively, is also a very useful feature."
"The best feature of Graylog is the Elasticsearch integration. We can integrate and we can run filters, such as an event of interest, and those logs we can send to any SIEM tool or as an analytic. Additionally, there are clear and well-documented implementation instructions on their website to follow if needed."
"The build is stable and requires little maintenance, even compared to some extremely expensive products."
"What I like about Graylog is that it's real-time and you have access to the raw data. So, you ingest it, and you have access to every message and every data item you ingest. You can then build analytics on top of that. You can look at the raw data, and you can do some volumetric estimations, such as how big traffic you have, how many messages of data of a type you have, etc."
"Storing logs in Elasticsearch means log retrieval is extremely fast, and full text search is available by default."
"The ability to write custom alerts is key to information security and compliance."
"Open source and user friendly."
"I would like to monitor inbound and outbound transfer. I would also like to control the traffic for load balancing."
"The dashboard and the UI could improve in Amazon CloudWatch. Additionally, they should focus on visibility inside the servers with AI and machine learning integrations. This would allow users who are using the solution to see what is happening within the system better."
"The solution could benefit from a price decrease."
"The configuration capabilities could be better."
"For monitoring applications or for APM, CloudWatch has some limitations. You cannot monitor application performance from CloudWatch, and you have to go for a third-party tool."
"What would make Amazon CloudWatch better is if it includes more on-site checks, particularly status checks on the CPU, network input/output, etc. It would also be helpful if there's built-in swap space, disk, and memory monitoring in Amazon CloudWatch because, at the moment, my team has to configure it manually through a shell script."
"The product should provide more features."
"Right now, in relation to monitoring services, there are too many services and too many metrics per service."
"Elasticsearch recommendations for tuning could be better. Graylog doesn't have direct support for running the system inside of Kubernetes, so it can be challenging to fill in the gaps and set up containers in a way that is both performant and stable."
"Graylog can improve the index rotation as it's quite a complex solution."
"I would like to see a date and time in the Graylog Grok patterns so that I can save time when searching for a log. I like how the streams and the search query work, but adding a date and time will allow me to pull out a log in a milli-second."
"I hope to see improvements in Graylog for more interactivity, user-friendliness, and creating alerts. The initial setup is complex."
"The biggest problem is the collector application, as we wanted to avoid using Graylog Collector Sidecar due to its architecture."
"It would be great if Graylog could provide a better Python package in order to make it easier to use for the Python community."
"Its scalability gets complicated when we have to update or edit multiple nodes."
"Over six months, I had two similar issues where searches were performed on field "messages". It exhausted all the memory of the ES node causing an ES crash and a Graylog halt."
Amazon CloudWatch is ranked 12th in Log Management with 40 reviews while Graylog is ranked 11th in Log Management with 18 reviews. Amazon CloudWatch is rated 8.0, while Graylog is rated 8.0. The top reviewer of Amazon CloudWatch writes "Instantaneous response when monitoring logs and KPIs". On the other hand, the top reviewer of Graylog writes "Great detailed search features and easy Java integration, but needs improvement in integration with Python". Amazon CloudWatch is most compared with Zabbix, Datadog, Google Cloud's operations suite (formerly Stackdriver), Dynatrace and Splunk Infrastructure Monitoring, whereas Graylog is most compared with Grafana Loki, Wazuh, syslog-ng, Fortinet FortiAnalyzer and Splunk Enterprise Security. See our Amazon CloudWatch vs. Graylog report.
See our list of best Log Management vendors.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.