Graylog, headquartered in Houston, offers their eponymous platform for centralized log management that helps users find meaning in data faster so as to take action immediately. Graylog is available via Enterprise and Cloud plans, but also has a Small Business Plan, and an Open (free) plan with limited features.
N/A
LogicMonitor
Score 8.6 out of 10
Mid-Size Companies (51-1,000 employees)
LogicMonitor provides an agentless SaaS-based monitoring platform. LogicMonitor provides prebuilt integrations and an open API, and is designed to provide monitoring across networks, servers, applications, websites, and containers, including insights and reporting capabilities.
N/A
Pricing
Graylog
LogicMonitor
Editions & Modules
No answers on this topic
Enterprise
Contact sales team
Website Monitoring
Contact sales team
Offerings
Pricing Offerings
Graylog
LogicMonitor
Free Trial
No
Yes
Free/Freemium Version
Yes
No
Premium Consulting/Integration Services
No
Yes
Entry-level Setup Fee
No setup fee
No setup fee
Additional Details
—
Our platform is broken down into Pro and Enterprise Pricing. Pro includes monitoring for all of your cloud, hybrid, and on-premises infrastructure. Our Enterprise package includes all of this, plus our AIOps and Machine Learning functionality that provides dynamic thresholds, root cause analysis, anomaly detection and more!
LogicMonitor only charges by the device. What is considered a device? A device is anything with an IP address that you want to monitor, including a physical device or a cloud resource. This means multiple data sources under the same IP address can be monitored for the same price. Unlike some monitoring platforms. we don’t charge per node, interface, or metric.
For small companies, Graylog is the best solution possible. It's easy to configure and "just works." Above everything else, it's free. The only thing I hold against it is the fact that it's Linux-based. [This] makes sense because Elasticsearch is Linux-based. But Linux adds a layer of complexity that we don't need for something basic as a logging server. I'm pretty sure that we would have had a logging server years earlier if I had to convince quite a few decision-making people to go ahead with it anyway.
I can easily recommend LogicMonitor because of its very powerful, real time alerting; it is affordable and integrates with many systems quickly. In this case, it is most notable in that it brings a lot of convenience and efficiency since, within a single application, the proactive monitoring and swift solving of issues takes much of the headache out of IT infrastructure management
Graylog does a great job of its core function: log aggregation, retention, and searching.
Graylog has a very flexible configuration. The backend for storage is Elasticsearch and MongoDB is used to store the configuration. You have to option to make your configuration as simple as possible by storing everything on one box, or you can scale everything out horizontally by using a cluster of Elasticsearch nodes and MongoDB servers with several Graylog servers pointed to all the necessary nodes.
Graylog does a good job of abstracting away a fair portion of Elasticsearch index management (sharding, creation, deletion, rotation, etc).
LogicMonitor is very customizable. We can build whatever modules we need, because it uses standard protocols like HTTPS, SNMP and WMI to gather data and metrics.
We like that LogicMonitor is an agentless solution for our use case. Not all customers will allow an agent-based approach to 3rd party tools.
LogicMonitor has thousands of out of the box modules, which work on their own and also act as good baselines for the ones that we will end up customizing more. We are rarely starting at zero when we decide to do something new with LogicMonitor.
LogicMonitor has great documentation, and support has been helpful in the instances where we've needed them.
This product has met virtually all of our needs. It was easy to implement and has been simple to support. Customization has been intuitive with many options available. They keep adding features and expanding available options. The future of LogicMonitor looks even better than it is today which is very promising. The management and support teams at LogicMonitor are always helpful
Set up is super easy. Just stand up a small Linux or Windows server to act as a collector. There are no agents to install on monitored devices and all you need is SNMP or WMI access. When creating dashboards, all you have to do is find the widget on the device you want to show up and choose the menu option to add it.
Community support does not give simple straightforward answers; simply search up Graylog Issues and look at some of the responses on the forums. The documentation is your only hope if you are on the free version, as you can NOT purchase only support. The few times I have worked with Graylog Enterprise support they were great though.
The sales team support we received was top notch. They worked hand in hand to make sure the product met all expectations. So far we have not really had to work with support that much; we have worked with setup team after purchase to deploy product fully. No issues so far and we are four weeks in.
We found the LogicMonitor documentation and online guides to be up to date and easy to follow. During our pre-sale proof of concept phase, we learned the basics of creating import CSV files and had the bulk of our devices added the first day. After the purchase, we used the professional services to get training on the entire system and help customizing everything to meet our needs. We also made use of the available certification online training courses for our power users to get them comfortable with the system.
In terms of log aggregation, the free product fully stacks up with the competitors listed. Full control over the data ingests for flexible configuration. Graylog even better on that front than AlienVault USM because you cannot configure the variable mapping. We haven't used the threat exchange stuff or correlation. But with regex searches, we have created function dashboards that show threat theater pictures of our network based on logs from our firewall.
During the evaluation process we looked a number of other solutions, a detailed technically analysis was carried out to map functionlity, deployment and scalabilty across the solutions. The primary areas that LogicMonitor succeeded are around the simplicity of deployment, scalability and to a lesser extent cost. Of the alternative products, Datadog is a better solution if your focus is on APM. However it will be harder to manage in a scaling MSP environment.
Pricing seems to be getting more and more aggressive, I worry that it's going to turn into ServiceNow or SAP and everything minor feature will be an extreme cost that prices out us and our customers
Haven't really used it but our initial onboarding PS was disappointing. Felt like we were being told what we needed to cover as opposed to what we wanted to cover. In addition, we were pushed into using the PS in tight time frames and we were not ready to do so.
Graylog is just less expensive than some other options which meant it fit into our budget otherwise we might not be able to justify a higher cost.
Being able to track issues that we normally couldn't track using other tools is a bonus to help us know of any issues we have and can fix before an outage or failure that could potentially cost money.
We have had to spend more time than I would like to understand and customize Graylog which has taken time away from other tasks and projects.