Logstash

(10)
4.0 out of 5 stars

Process Any Data, From Any Source. Centralize data processing of all types. Normalize varying schema and formats. Quickly extend to custom log formats. Easily add plugins for custom data sources

Work for Logstash?

Learning about Logstash?

We can help you find the solution that fits you best.

Logstash Reviews

Ask Logstash a Question
Write a Review
Filter Reviews
Filter Reviews
  • Ratings
  • Company Size
  • User Role
  • Industry
Ratings
Company Size
User Role
Industry
Showing 10 Logstash reviews
LinkedIn Connections
Logstash review by <span>Joseph H.</span>
Joseph H.
Validated Reviewer
Verified Current User
Review Source

"Versatile log processor with ample community support and rapid updates"

What do you like best?

The thing I like the most about logstash is the ability to adjust it to whatever you are doing. If it is your own custom project, or a standard input source it will bend to your needs.

What do you dislike?

Setting up logstash took a while when I had no idea how to get it working. What I am trying to say is the learning curve was a little higher than I thought. That and GROK is horrible.

Recommendations to others considering the product

Learn to use Grok. Find a Grok parser online and then look for a LOT of guides on how to write grok. There are plenty of them out there.

When you have found your guide, test out your code. Set up a CI / CD environment, even if it is a simple one to test out your changes to your logstash configuration files.

Make sure you setup all your inputs and outputs as separate files, it makes for a LOT easier debugs.

Use a version control system like git, it makes finding problems with your configuration changes a LOT easier

Basically what I am saying is follow the principals of DevOps, logstash is trouble

What business problems are you solving with the product? What benefits have you realized?

Analyzing windows and Linux log files for common use, and miss use of computers. Being able to see in one central location how all of the systems and clients are behaving is wonderful.

Sign in to G2 Crowd to see what your connections have to say about Logstash
Logstash review by <span>Ahwan K.</span>
Ahwan K.
Validated Reviewer
Review Source

"Easy to setup detailed log monitoring with interactive dashboards."

What do you like best?

The regular expression based log parsers work really well. Immediate discovery of issues helps fixing the bugs very soon. You do not need to login to server and check the logs everytime. Logstash along with Kibana and elasticsearch works like a charm. You will get a holistic view of all your logs and your debugging starts here.

What do you dislike?

Its parsing is limited to the regular expressions. Should have some approximate matching with ML techniques which can help discover more issues. Writing custom grok regex patterns is a bit complex. The threshold for one time setup is a bit high and you need to have an initial understanding of the tools.

Recommendations to others considering the product

Use the complete ELK (Elasticsearch, Logstash and Kibana) stack for the best overview and experience. You can find nginx, apache, uwsgi grok rules easily online but you should have an initial hands on with grok parsing if you want to have some custom parsing.

What business problems are you solving with the product? What benefits have you realized?

It helps developers discover and manage bugs very quickly. The no of incidents that are occurring can be monitored and helps decide that priority on which the issues needs to be worked upon. App monitoring and backend team's efficiency increases a lot with this tool since they don't have to spend a lot of time discovering the bugs.

What Data Quality solution do you use?

Thanks for letting us know!
Logstash review by <span>Ben P.</span>
Ben P.
Validated Reviewer
Verified Current User
Review Source

"Go to open source log processor"

What do you like best?

It's a very versatile log processor with a very supportive community. It also comes with ample of plugins that's very useful. The GROK filter plugin contains prebuild regular expression that supports common software log patterns to get you up and running quickly.

What do you dislike?

There is a learning curve like all software. It has its own syntax and requires java run time. It's a memory hungry software for being a java app.

What business problems are you solving with the product? What benefits have you realized?

This is implemented with elasticsearch, kibana and logstash commonly known as the ELK stack for log management and anomaly detection for future implementation.

Logstash review by <span>Евгений .</span>
Евгений .
Validated Reviewer
Verified Current User
Review Source

"Worst configuration. Why Java and Ruby? Why not just Ruby or Java?"

What do you like best?

The Logstash solves my problem. It collects all my logs and stores it in ElasticSearch. Everything else I do not like in this product! Sorry guys but other products from your company is much better!

What do you dislike?

I don't like the following:

1) Why Java and Ruby? Why not just Ruby or Java? I have to configure how to run java, jruby and after that I faced with the Ruby errors of some plugin... AAA!!

2) I don't understand configuration, what should i chose: embedded Elasticsearch or dedicated? What is the differences? Why some of plugins may be input, output, and filter? What should I chose?

3) I've configured Logstash, but I still have a lot of misunderstandings.

I would like to have interface to configure Logstash in the Kibana.

Recommendations to others considering the product

Logstash are made by the same team as Elasticsearch and Kibana.

What business problems are you solving with the product? What benefits have you realized?

Logstahs helps me to collect all logs of all my services.

Logstash review by <span>Ankit Narayan S.</span>
Ankit Narayan S.
Validated Reviewer
Review Source

"Works with great reliability and very low maintenance"

What do you like best?

Very supportive community to reach out with issues. I also like their grok feature to do basic regex searches to convert some of my unstructured data into structured data and gives more visibility into my application logs.

Last but not least, it's open source so it’s simple to extend it to custom log formats or add plugins for custom data sources.

What do you dislike?

It took me a while to set Logstash correctly and run it reliably without running into any issues. I would often get out of memory issues and even after increasing system RAM, I would run into this issue. I finally figured out the issue after much searching around but it was not immediately clear what caused the issue. Documentation is good but as with any open source tool, it is not as extensive or complete as one would wish.

What business problems are you solving with the product? What benefits have you realized?

We use logstash as ELK stack to monitor and search our logs in production environment to detect potential issues with our applications.

It has also helped us to monitor logs for our large scale crawlers that we have deployed for our product.

Logstash review by <span>Ameya K.</span>
Ameya K.
Validated Reviewer
Verified Current User
Review Source

"Low maintenance with high performance"

What do you like best?

The grok feature used to parse out the fields from raw logs using regular expressions.

What do you dislike?

The internal memory consumption used by java for each application thread spawned.

Recommendations to others considering the product

simple to configure and use. easy to maintain and monitor. Only disadvantage is high CPU/memory usage for the underlying java program used by logstash.

What business problems are you solving with the product? What benefits have you realized?

parse out all the raw application logs using grok into a single JSON file which can be used to power user usage analytics for mobile devices and to determine customer churn.

Logstash review by Administrator in Computer Games
Administrator in Computer Games
Validated Reviewer
Verified Current User
Review Source

"Good open source software"

What do you like best?

Very good performance when processing and collecting logs big in size.

Open source with a big community and a lot of plugins available.

What do you dislike?

High memory consumption.

Somewhat hard to setup.

What business problems are you solving with the product? What benefits have you realized?

We needed a way to easily find recurring build system problems that are in our hundreds of logs.

With the implementation of elk(elastisearch, logstash, kibana) we can now easily search all of our logs at once.

Logstash review by User in Internet
User in Internet
Validated Reviewer
Review Source

"Simple to configure. Works realiably. Simplest tool in ETL"

What do you like best?

The simplicity of defining the configuration for an ETL job and numerous plugins available.

What do you dislike?

Not so friendly way to scale the tool for huge amounts of input.

Recommendations to others considering the product

Definitely, try it out. It's the best tool for small to medium workloads.

Default grok patterns can be quite tricky. Suggestion: use CSV filter if feasible.

What business problems are you solving with the product? What benefits have you realized?

Extract Transform Load workloads especially for access logs.

Logstash review by User in Internet
User in Internet
Validated Reviewer
Review Source

"Logstash Review"

What do you like best?

It logs the activities from all the servers and aggregates them into one source of truth for visualization and researching.

What do you dislike?

The logs take a while to understand for non-technical person at the beginning

What business problems are you solving with the product? What benefits have you realized?

To keep logs and be able to track back to see what activities were performed by what users

Logstash review by Consultant in Utilities
Consultant in Utilities
Validated Reviewer
Review Source

"Best Log management tool"

What do you like best?

Open Source

Very good tool for collecting and managing log files

Very good integration with elastic search and kibana.

Together all three form a powerful Log management solution.

What do you dislike?

Extensibility becomes complex.

Need separate nodes for logstash ,kibana and elastic search.

What business problems are you solving with the product? What benefits have you realized?

Log management of the prod application deployed in a cluster environment.

Kate from G2 Crowd

Learning about Logstash?

I can help.
* We monitor all Logstash reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. Validated reviews require the user to submit a screenshot of the product containing their user ID, in order to verify a user is an actual user of the product.