ArcSight Logger and syslog-ng are key players in log management and analysis. ArcSight Logger has a lead in customer service, while syslog-ng is preferred for its feature set and deployment flexibility.
Features: ArcSight Logger offers strong log analytics capabilities, seamless integration with security tools, and comprehensive support for enterprise environments. syslog-ng provides versatility with ease of customization, support for multiple log protocols, and adaptability to various deployment scenarios.
Room for Improvement: ArcSight Logger could improve speed, streamline its configuration process, and enhance user interface design. syslog-ng needs better documentation, improved technical support, and optimization for resource management.
Ease of Deployment and Customer Service: ArcSight Logger is recognized for customer support facilitating smoother deployments. syslog-ng offers quicker deployment due to flexible configuration, although user experiences with support services vary.
Pricing and ROI: ArcSight Logger has high initial setup costs but provides strong ROI with its functionalities and support. syslog-ng is cost-effective, offering good ROI with lower setup costs and efficient log management, presenting better value in terms of ROI.
Optimizing SIEM
syslog-ng is the log management solution that improves the performance of your SIEM solution by reducing the amount and improving the quality of data feeding your SIEM.
Rapid search and troubleshooting
With syslog-ng Store Box, you can find the answer. Search billions of logs in seconds using full text queries with Boolean operators to pinpoint critical logs.
Meeting compliance requirements
syslog-ng Store Box provides secure, tamper-proof storage and custom reporting to demonstrate compliance.
Big data ingestion
syslog-ng can deliver data from a wide variety of sources to Hadoop, Elasticsearch, MongoDB, and Kafka as well as many others.
Universal log collection and routing
syslog-ng flexibly routes log data from X sources to Y destinations. Instead of deploying multiple agents on hosts, organizations can unify their log data collection and management.
Secure data archive
syslog-ng Store Box provides automated archiving, tamper-proof encrypted storage, granular access controls to protect log data. The largest appliance can store up to 10TB of raw logs.
We monitor all Log Management reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.