We are looking at Splunk for syslog analysing to close a hole in our application visibility, but it's expensive.
I've looked at alternatives like logstash and graylog2, but I wanted to see if anyone had some experiences they would be willing to share on either splunk or other. This was raised a couple of years ago but I figure the scene has changed a fair bit since then! Cheers, Mark -- SLUG - Sydney Linux User's Group Mailing List - http://slug.org.au/ Subscription info and FAQs: http://slug.org.au/faq/mailinglists.html
