We've encountered several challenges, but what's most promising and encouraging is Cribl's scalability. The architecture is impressive, and it distributes work across all worker nodes and communicates with the leader.
Architect at Sii Polska
Provides impressive architecture and easy setup but have administrative issues
Pros and Cons
- "The support team was very helpful and managed to get everything production-ready."
- "There have been several administrative issues. Another point is that the browsing functions aren't very intuitive."
How has it helped my organization?
What needs improvement?
There have been several administrative issues. Another point is that the browsing functions aren't very intuitive.
The most challenging aspect is the versioning system. Everyone can see and potentially deploy each other's changes in a team of developers. Unlike traditional versioning systems, where you work in isolated feature branches and only merge changes after reviewing conflicts, Cribl's versioning system requires careful management because everyone works on the same repository.
I work with a team that includes both experienced and less experienced developers. Though new to this technology, the two senior developers have extensive experience with various other technologies and can get up to speed relatively quickly with the available training. The less experienced developers face significant challenges. They struggle to understand the system, suggesting it may not be intuitive.
For how long have I used the solution?
I have been using Cribl for two years.
What do I think about the stability of the solution?
I rate the solution’s stability a seven out of ten.
Buyer's Guide
Cribl
December 2024
Learn what your peers think about Cribl. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,067 professionals have used our research since 2012.
What do I think about the scalability of the solution?
10-15 people are using this solution.
How are customer service and support?
Everything works, but it required a lot of support. The setup wasn't easy, but the support team was very helpful and managed to get everything production-ready.
How was the initial setup?
Setting up Cribl for basic training is straightforward and effective. You can easily configure it on your laptop by downloading the binaries and using simple command-line instructions to set it up in different modes, like leader, edge node, or single deployment. Adding a worker node is also simple; just run a script generated in the UI, and it's up and running.
The enterprise setup process is more complex, and there are significant documentation challenges. Despite the system eventually being available, the process involved many support calls and workarounds. Getting everything set up for a production-ready enterprise deployment was long and challenging.
What other advice do I have?
In some of the projects I've been working on, we're still testing and exploring Cribl's capabilities. We haven't established specific business goals or fixed objectives yet. Currently, we're focused on ingesting data from various sources with minimal transformation to understand how Cribl handles different types of logs and data.
I encounter issues with the UI not accurately reflecting the current status. For example, the UI might show that a worker is still fetching the latest version of the code, but after refreshing the page, it usually updates to show that everything is up and running. Over time, I've learned to recognize when the UI is not displaying the correct information and use the refresh button to get the accurate status.
Overall, I rate the solution a six out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Sep 17, 2024
Flag as inappropriateSecurity Engineer at a tech services company with 51-200 employees
Offers efficient log management but has room for better documentation
Pros and Cons
- "The capability to reduce logs in a user-friendly manner is a standout feature. Cribl allows us to view logs live as they are being processed, giving us quick feedback on the changes made."
- "There is room for improvement in the documentation and knowledge base, particularly regarding configurations like sources where logs are being ingested"
What is our primary use case?
I use Cribl to ingest logs from different platforms. These logs could come from sources like Mimecast, Windows, or CrowdStrike logs. It acts as a pipeline to send data to our destinations and also helps in reducing the amount of logs sent by applying different functions on them.
How has it helped my organization?
Cribl has helped to save thousands of dollars for our clients. It provides cost-effective solutions, particularly when you know how to use it effectively. It does require some learning to cover all aspects of it because it's not entirely intuitive. However, once you overcome the learning curve and get hands-on with the platform, it significantly contributes to cost savings.
What is most valuable?
The capability to reduce logs in a user-friendly manner is a standout feature. Cribl allows us to view logs live as they are being processed, giving us quick feedback on the changes made.
Additionally, the data routing feature is beneficial because it gives us the option to send logs through data routes or QuickConnect, facilitating quick configurations of different sources and managing them more effectively. These functionalities offer logical and useful capabilities such as deciding where logs should be sent and specifying which fields should be included within the logs.
What needs improvement?
There is room for improvement in the documentation and knowledge base, particularly regarding configurations like sources where logs are being ingested. It would be helpful to have specific guidance on configuring different data sources, such as AWS S3 buckets. Additionally, the ability to understand what type of output a function will produce is missing in Cribl, which could be improved by indicating the output type.
For how long have I used the solution?
I have been using Cribl for more than one and a half years.
What do I think about the stability of the solution?
Cribl's stability has been well documented online, and we have not encountered any significant stability issues.
What do I think about the scalability of the solution?
We have tested Cribl and found it to be sufficiently scalable for our needs.
How are customer service and support?
At the time I was trying to do the course back then, I did escalate questions to tech support, but I haven't raised any recent issues.
How would you rate customer service and support?
Neutral
Which solution did I use previously and why did I switch?
I have experience with Splunk and CrowdStrike. I am quite familiar with Splunk.
What was our ROI?
Cribl is indeed a cost-effective solution, saving thousands of dollars for our clients. It provides value through cost savings and time efficiency once users know how to effectively use the platform.
What other advice do I have?
It's important to know what source you will be using to ingest data into Cribl. Understanding how to configure the data source is key before using the platform. Once you have that figured out, Cribl becomes a powerful solution that can ingest almost anything with its Edge capability. However, having a clear understanding of the pathways you can take to ingest data is crucial before diving into it.
Which deployment model are you using for this solution?
Hybrid Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Other
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Last updated: Oct 20, 2024
Flag as inappropriateBuyer's Guide
Download our free Cribl Report and get advice and tips from experienced pros
sharing their opinions.
Updated: December 2024
Product Categories
Application Performance Monitoring (APM) and Observability Data Integration Log Management Cloud Data Integration Data Preparation ToolsPopular Comparisons
Dynatrace
Datadog
Zabbix
OpenTelemetry
Observe
Apica
Sumo Logic Observability
Splunk Synthetic Monitoring
Kloudfuse
Buyer's Guide
Download our free Cribl Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- When evaluating Application Performance Management, what aspect do you think is the most important to look for?
- APM tools for a Managed Service Provider - Dynatrace vs. AppDynamics vs. Aternity vs. Ruxit
- What solution would you recommend for monitoring traffic utilization of leased lines?
- How Much Should I Budget for an APM Solution?
- Which is the best AANPM product? Should we be considering anything besides for Riverbed?
- Who Uses APM?
- What is your favorite tool for Application Performance Monitoring?
- How does synthetic monitoring differ from real user monitoring?
- Differences between SiteScope and dynaTrace?
- Splunk as an Enterprise Class monitoring solution -- thoughts?