Graylog Reviews

Filter by:Reset all filters
industry
Loading...
Filter Unavailable
Company Size
Loading...
Filter Unavailable
Job Level
Loading...
Filter Unavailable
rating
Loading...
Filter Unavailable
Mark Walters
Real User
Release Engineering Manager
Nov 23 2017

What is most valuable?

The ability to write custom alerts is key to information security and compliance. Also, I love the improvements I can make on dashboard widgets.

How has it helped my organization?

Application event messaging, or logging, until I show an organization the result of seeing the application in real time. Then, I can mentor the importance of a good log… more»

What needs improvement?

The collectors and using sidecar made my life easier from earlier versions. Unfortunately, I have been pulled away from the product, beyond setting up new inputs, defining… more»

What's my experience with pricing, setup cost, and licensing?

I am not fully aware of their licensing model. I should take a look at the details, as I am using a community edition. I have not looked at the enterprise offering from… more»

If you previously used a different solution, which one did you use and why did you switch?

I have always used Graylog2. Initially, I may have looked at Logstash and Loggly, but once it was off and running, I embraced the Graylog way of things.

What other advice do I have?

Start with the defaults. Do not be afraid to start over. Having a test or sandbox to work with to figure out how to create streams, extractors, and inputs is a good way to… more»

Which other solutions did I evaluate?

I reviewed Logstash and Loggly.
Real User
Systémový inženýr DS senior
Nov 16 2017

What is most valuable?

We are using only a few parts of its functionality. Its most valuable functions for us are: * Log collection * Quick string search in central storage * Message forwarding… more»

How has it helped my organization?

We use this system as a central log collector with the possibility to search through the archive backward for specific string definitions.

What needs improvement?

The biggest problem is the collector application, as we wanted to avoid using Graylog Collector Sidecar due to its architecture. It requires connection outside our network… more»

What's my experience with pricing, setup cost, and licensing?

I cannot answer this question. Having paid official support is wise for projects.

If you previously used a different solution, which one did you use and why did you switch?

There were no solution before Graylog. It was built as new project.

What other advice do I have?

Do not give up. Look forward and good luck. The worst phase was the planning one, so I would offer this advice: Don't underestimate anything. Graylog is worth the given… more»

Which other solutions did I evaluate?

Yes, we were thinking about the Logstash family, but due to similar issues with the building codes as in the Graylog Collector Sidecar case, we decided for Graylog.
Find out what your peers are saying about Graylog, Elastic, Splunk and others in Log Management. Updated: June 2019.
353,345 professionals have used our research since 2012.
JasonCrow
Real User
Senior Architect at a tech vendor with 51-200 employees
Mar 04 2018

What is most valuable?

* Searching errors * Alerting through Slack and OpsGenie using their plugins. We run a containerized microservices environment. Being able to set up streams and search for errors and anomalies across… more»

What needs improvement?

Elasticsearch recommendations for tuning could be better. Graylog doesn't have direct support for running the system inside of Kubernetes, so it can be challenging to fill in the gaps and set up… more»

What's my experience with pricing, setup cost, and licensing?

We use the free version.

If you previously used a different solution, which one did you use and why did you switch?

Splunk, Logstash, and Elasticsearch.

What other advice do I have?

Make sure your Elasticsearch cluster is sized right, memory-wise.

Which other solutions did I evaluate?

Splunk, Logstash, and Elasticsearch.
John Paul Dienst
Consultant
Technology Consultant
Mar 08 2018

What is most valuable?

Real-time UDP/GELF logging and full text-based searching. Since UDP is a stateless, connectionless protocol, it simplifies error handling for the log sender/producer in… more»

How has it helped my organization?

Logs were previously stored in various database tables. Log consumers were required to write SQL for retrieval, then correlate/join disparate sources by hand. Since most… more»

What needs improvement?

* Backup and restore functionally for migrating instances. * Dashboard and search analytics (i.e., more complex visualizations and the ability to execute custom… more»

What's my experience with pricing, setup cost, and licensing?

You get a lot out-of-the-box with the non-enterprise version, so give it a try first.

If you previously used a different solution, which one did you use and why did you switch?

No previous solution.

What other advice do I have?

Thoroughly read the Graylog documentation and consider Enterprise support if you have atypical needs or setup requirements.

Which other solutions did I evaluate?

All the other solutions were in-house proposals.
Consultant
IT Security Consultant at a tech services company with 10,001+ employees
Feb 04 2018

What is most valuable?

The most valuable part is an open source. The build is stable and requires little maintenance, even compared to some extremely expensive products.

How has it helped my organization?

It is used as a log manager/SIEM. It provides visibility into the infrastructure and security related events.

What needs improvement?

There are places which could be improved: * Stream alerts * Dashboards * Parsing. Some places were already improved in 2.4 with the threat intelligence add-on.

What's my experience with pricing, setup cost, and licensing?

If you want something that works and do not have the money for Splunk or QRadar, take Graylog.

If you previously used a different solution, which one did you use and why did you switch?

Splunk: The price was the factor for the switch.

What other advice do I have?

Just go ahead with the product.

Which other solutions did I evaluate?

ELK was another option. However, Graylog appeared to be more robust and had less limitations at the time.
Oskars Pakers
Real User
Java Software Developer at a financial services firm with 5,001-10,000 employees
Nov 26 2017

What is most valuable?

* Logging aggregation and querying. We have multiple applications, therefore it is no longer feasible to check logs from our file system per each application. * When adopting microservices… more»

How has it helped my organization?

It has sped up the investigation of incidents.

What needs improvement?

The alerting system could be more flexible. It does not allow for definition of different thresholds and alert types of the same streams. It allows different alert types and thresholds for the same… more»

If you previously used a different solution, which one did you use and why did you switch?

No.

What other advice do I have?

Send all logs to Graylog instead of just your errors. This will make it easier to investigate problems.

Which other solutions did I evaluate?

Yes, Elastic Stack.
AbhishekGarg
Real User
Software Engineer, DevOps at a tech services company with 51-200 employees
Jan 22 2018

What is most valuable?

The Stream Alert feature is a highlight of this. As for similar products, there are separate integrations, but Graylog ships this with the build.

How has it helped my organization?

This had increased productivity for the dev and support teams, because we are directly notifying them. Now, they have to come to dev for every issue.

What needs improvement?

There should be some user groups and an auto sign-in feature.

What's my experience with pricing, setup cost, and licensing?

None, as we are not using an enterprise solution.

If you previously used a different solution, which one did you use and why did you switch?

No.

What other advice do I have?

I will say that if you are using this, then explore all the features. You will find this like a swiss army knife.

Which other solutions did I evaluate?

We had evaluated ELK Stack, but found Graylog more useful for our use case.

Articles

User Assessments By Topic About Graylog

Find out what your peers are saying about Graylog, Elastic, Splunk and others in Log Management. Updated: June 2019.
353,345 professionals have used our research since 2012.

Graylog Questions

Graylog Projects By Members

What is Graylog?

Graylog is purpose-built to deliver the best log collection, storage, enrichment, and analysis. Graylog is:

  • Considerably faster analysis speeds.
  • More robust and easier-to-use analysis platform.
  • Simpler administration and infrastructure management.
  • Lower cost than alternatives.
  • Full-scale customer service.
  • No expensive training or tool experts required.
Also known as
Graylog2
Graylog customers

Blue Cross Blue Shield, eBay, Cisco, LinkedIn, SAP, King.com, Twilio, Deutsche Presse-Agentur

BUYER'S GUIDE
Download our free Log Management Report and find out what your peers are saying about Graylog, Elastic, Splunk, and more!
Sign Up with Email