Overall Satisfaction with Graylog
We currently use Graylog as a log aggregator and some light weight SEIM. However, we haven't had the cycles to use the other features of it. Presently solves our centralized log collection problem.
- Log Aggregation pipeline
- Dashboards
- Pricing for Enterprise is a bit unrealistic.
- Archiving should be a standard feature in the community edition.
- Full return on investment for the free version.
- Paid features aren't fully justifiable at the enterprise cost.
In terms of log aggregation, the free product fully stacks up with the competitors listed. Full control over the data ingests for flexible configuration. Graylog even better on that front than AlienVault USM because you cannot configure the variable mapping. We haven't used the threat exchange stuff or correlation. But with regex searches, we have created function dashboards that show threat theater pictures of our network based on logs from our firewall.
Do you think Graylog delivers good value for the price?
No
Are you happy with Graylog's feature set?
Yes
Did Graylog live up to sales and marketing promises?
No
Did implementation of Graylog go as expected?
Yes
Would you buy Graylog again?
No