IT Central Station is now PeerSpot: Here's why

Compare ELK Logstash and Graylog, which do you recommend?

Nurit Sherman - PeerSpot reviewer
Content Operations Manager at PeerSpot (formerly IT Central Station)

One of the most popular comparisons on our site is Compare ELK Logstash vs Graylog

One user says about ELK Logstash, "ELK documentation is very good, so never needed to contact technical support."

Another user says about Graylog, "UDP is a fast and lightweight protocol, perfect for sending large volumes of logs with minimal overhead."

In your opinion, which is better and why?



PeerSpot user
33 Answers

it_user243576 - PeerSpot reviewer

The question has two part.

You need to choose the back end to aggregate the log / information you want to centralize to allow advance query. On our side we decide to go with ElasticSearch has a backend and leverage the kibana for advance query to our users.

Also on our project, we did many integration in ElasticSerrch like application logging.

The client side / log shipping mechanism, you have many way to do it. Gralog / Syslog forwarder have minimal overhead to forward event / log. ELK support Graylog and many other method.

We decide to leverage the beat project (filebeat) to forward all file log to ELK.

As conclusion, both product are very powerful and the real value is to have a central point with all relevant information to take the right decision.

it_user426909 - PeerSpot reviewer

I have used Logstash and Graylog but not ELK.  To tell you the truth Splunk is the way to go.

Mike Cervasio - PeerSpot reviewer

I don’t have any experience with GrayLog, but I do with the Elastic Stack (Elasticsearch, Logstash, Kibana, Beats, etc.).

Elastic allows you to use lightweight log shippers called Beats (file beats, metric beats, packet beats). You would then use a Logstash node to provide log enrichment capabilities and then off to an ElasticSearch cluster to provide analytics with machine learning. Then use Kibana for visualization and role-based Dashboards.

Machine Learning is only available in the Platinum and Enterprise support subscription tiers.

The Elastic open source community is another key advantage and now the commercial plugins (x-Pack) will be open source (still need a support subscription to use all the capabilities)...

Buyer's Guide
Elastic Security vs. Graylog
July 2022
Find out what your peers are saying about Elastic Security vs. Graylog and other solutions. Updated: July 2022.
610,518 professionals have used our research since 2012.