Cribl LogStream processes log data before you pay to analyze it. LogStream helps you discern which data you need to send to an analytics tool to analyze now; which logs can be aggregated into metrics; which data should be stored and analyzed later if needed; and which elements of data should be dropped altogether. LogStream allows you to implement an observability pipeline which helps you parse, restructure, and enrich data in flight. Get the right data, where you want, in the formats you need.
LogStream makes it easy to route data to multiple destinations, delivering the right data to the right tools while putting full fidelity data in the most cost effective destination.
As much as 50% of log and metric data goes unused – null fields, duplicate data and fields that offer zero analytical value. With LogStream, you can trim wasted data streams and analyze only what you need.
Log systems require a lot of ancillary software: Syslog-ng, Splunk Heavy Forwarders, AWS & Kafka Connectors. LogStream consolidates receiving Splunk HEC, AWS, Kafka, and other sources all in one tool.
Parse and shape events in the stream, no matter how ugly the original log, and add context through enrichment before sending onto your destination system.
LogStream can aggregate logs into metrics for analysis by a wide array of tools, suppress duplicate events, or sample to keep a statistically significant subset of the full stream.
Reduce management overhead, with a robust and easy-to-use GUI-based configuration and testing interface. Capture live data and monitor your observability pipeline in real-time.