ContactSupportBlogPartner Portal
Products
Solutions
Resources
Company
Community
Get Graylog
Get Graylog
Menu

Graylog 3.1

This release brings a whole new alerting and event system that provides more flexible alert conditions and event correlation based on the new search APIs that also power the views.

Correlation and Event Management

Log messages can take many different forms and usually contain a lot of noise. At the same time, not everything noteworthy in logs is necessarily an alert. In order to overcome this gap, Graylog Enterprise now allows you to define events that are stored in Elasticsearch where all Graylog functionality can be used to query, organize and archive them, long beyond the lifetime of the raw, noisy logs that created them. Correlate events over time to trigger notifications when a combination of events appear or even a certain combination of events does not happen in a certain amount of time.

Download Now

IT Operations

Identify outages and slowdowns sooner, even forecast the need for additional infrastructure such as another domain controller by correlating performance log data from throughout your environment.

Learn More
Aggregation Builder

Create flexible visualizations and transform data with our powerful new aggregation builder UI.

Time Range Selector

Every view has a time range selector to quickly change the time range you want to search in. Start with looking at only an hour of data and then switch to a full week of data with just a click.

Save and Re-uSe

Have a task that you or your colleagues are executing regularly? Create a view once and re-use it anytime. Have flexible parameters like an IP address or hostname? Substitute parts of the query with parameters and configure them easily before view execution.

Streams Selector

Want to search across multiple streams at once or quickly add another one? The whole result set is now always based on all streams that you select in the streams selector box.

IT Security & Compliance

Reduce noise by identifying security issues by correlating log messages across time, endpoints, and different types of endpoints before sending alerts up the tech stack.

GUI Builder

Reports are built using an intuitive GUI-based process. No complicated configuration language, and all the benefits of WYSIWYG.

Scheduled Delivery

Configure reports to be sent out at custom intervals. The report will be attached as a PDF to a customizable email.

Report History
Learn More

See when scheduled reports were sent out and who received them.

Manual Download

Download a current PDF report at any time with a click from the web interface.

Network & Telecom

Bring together all your logs from all your networking equipment in one place so you can holistically see what’s loading up the network and create alerts based on a combination of factors across hardware.

Learn More
Manage Any Collector

Deploy, configure, or restart any log collector. Collector configurations can be shared and imported using content packs.

New Configuration UI

The new configuration UI is text-based and much easier to use than the existing one. Apply different configurations easily, on all or only selected collectors and based on their type.

Improved Status Reporting

The sidecar process and the processes it manages are now reporting more status and error information to allow remote debugging and remediation from within the web interface and without ever logging in to the remote machine.

And More

Forwarder

Technically released in v3.0.2, it’s worth mentioning that Graylog Enterprise customers can now easily consolidate data from multiple Graylog instances. This enables organizations with complex architectures due to managing many terabytes per day, being highly decentralized, or providing Graylog to multiple clients as a managed service to run more efficiently, provide better response times, and analyze data across your entire organization.

DATA VISUALIZATION & AGGREGATION ENHANCEMENTS

In Graylog 3.1 many visualization improvements have been completed. These visualization improvements range from allowing you to quickly mark key data in the search pane to applying multiple types of data aggregation against a single field and combine different aggregation types in the same chart. This means users can now aggregate over multiple fields and data series, in a pivot-like manner.

NEW METRIC FUNCTION

Graylog 3.1 is introducing the `percentile()` metric function to allow you to see your numeric data sets referencing a percent.  You can now search for File Changes by User, and selecting the percentile metric will list out percentage of change by user.

AGGREGATION CHART CHANGES

Stacked bar charts were released with Graylog 3.1, moving the side by side data sets to data stacked by color. The colors in the charts can also be changed by clicking on the legend, and picking the color desired.

Download Now

New Security Edition!

To get you up and running as fast as possible, we will soon be offering a version of Enterprise that includes additional security-related content in the default installation.

Contact Our Sales Team

Stay In The Know

Get Graylog email updates and be the first to know about new content, product updates, and tips and tricks!

Products
Graylog Open SourceGraylog EnterpriseComparisonFeaturesReleases
Solutions
SecurityCompliance & AuditIT OperationsDevOpsMSSP
Company
About UsResource LibraryBlogGraylog MarketplaceCareers
708 Main Street
Houston, Texas 77002
info@graylog.com
Contact Sales