Sumo Logic Reviews

I really like that the data obtained can be analyzed with great ease, the way to organize them is perfect, you have many high-level options configured, this allows even a beginner to work safely and easily. The training they provide is really good.

The only thing I do not like about Sumo Logic is the delay that there is to show new records, no matter how much the page is updated many times you have to wait between 5 and 10 minutes, this tends to be a bit frustrating, but otherwise it is perfect.

It works whenever you need it. the problems have been minimal is very good this software is a good investment

It is very useful to be able to see the data of several servers over time. It is definitely a great help and a great time saver. If you had to do that work without the help of Sumo Logic, it would be practically impossible. Having access to a central place to look for the resolution of a problem is perfect.

I like being able to query on the logs and create dashboards based on the queries. Create alerts based on the queries and get notified via email.

Integrate with OpsGenie and send alerts when we see high number of issues.

Ingest load balncer S3 logs to see trends and patterns. Ability to export the results in excel sheet for sharing with others. Sharable search results.

Analyze log and keep track of usage to reduce spending.

Geolocate requests on load balancer and create custom dashboards to view them.

Good documentation on various

Limitation on number of tab's that can be opened. I have lot of saved searches and i keep them open. If i want to open a new tab i have issue due to the limitation.

Can get expensive after crossing daily logging limit of 3000GB.

Takes time for new logs to showup in Sumo.

Sumo Logic Collectors receive data from one or more Sources and help us in ingesting data from different kind of source categeries.

Sumo is quite useful tool for log analysis.

Search Query Language is quite help fun in querying logs and generating dashboards.

I use Sumo Logic every day as part of my work.

Helps in analyzing the requests hitting the load balancer using the S3 access logs ingested to sumo logic.

Use Sumo Logic queries to aggregate logs and extract information to identify issues.

Schedule searches with queries to identify issues in production.

I live the live metrics the best. We have them integrated into our internal dashboards and it's extremely useful. I have worked with Splunk in the past, and while they provide the same out of the box log aggregation tools, Sumo logic's UX is far better. I have been able to solve complex issues, and create embedded queries for live dashboards. I know Sumo logic is cloud native and built around cloud usage. This means integrations are smoother, particularly when it comes to platforms such as AWS; scalability is built-in, there is no need for constant updates, and getting started is quicker and easier than with Splunk. Another cool feature is its ability to establish baselines and actively notify you when key metrics change after an event, such as a new software version rollout or network breach attempt. I had an error where a process was stuck in a retry loop, creating 50 times the logs created in a healthy process. This change went into our test environment on a Friday and came to light only after the alert email from Sumologic asking if this was expected.

I keep being asked to login twice, the first time the login fails, the second time it succeeds (same passwords as the first time). This is a super annoying problem, and everyone across the app comes across the same thing. Sumo Logic also lacks some of the extended features of Splunk, particularly when it comes to the Splunk Enterprise offering. Sumo Logic’s speeds when searching older data is really slow, and the UX completely bogs down during the search. Sumo logic is also a bit more on the on the expensive side.

Nothing to add

We need to be able to understand what is happening across our complex data pipeline using a distributed serverless architecture. Sumologic is an excellent tool helping analyze our logs and provide performance metrics.

I love that I can search for complex combinations of strings to narrow down the log statements that I have to sort through by hand. In a high volume environment, this is absolutely key to successfully finding exactly what you're looking for.

If I had to complain about something it would be the delay in time between when a log message is generated on my application and it arrives in Sumo. This can be a couple of minutes or more. However, as I have stated before, I'm in a high volume environment. So, I'm somewhat forgiving, knowing that it takes time to index all of that free-form text.

SumoLogic is a large and sophisticated platform. Be prepared for a learning curve. You can perform simple requests very easily, but you'll need to follow some of their training materials to become proficient with more complex features.

As a developer, I mainly utilize Sumo to debug problems within my application. However, my team also uses it as a monitoring device, watching for specific tasks to execute when they are supposed to.

I love how in depth the query results are. Being able to filter a certain log field is very useful, and something I had not seen before in older version of Kibana. Being able to drag a specific time range in the log visualization tool and have the logs for that time range pop up are very useful. The JSON field formatting is also extremely useful. We use this to trace through logs and have been able to determine the flow of any particular request in our services. This has saved significant amounts of time as opposed to having to trace through entire log entries.

I find myself constantly having to relearn how to write more complex queries. For anything simple, things are usually straightforward, but I find myself having to rely on saved queries too often for anything even moderately complex.

Use saved queries lots, it is easy to forget how to write complete queries from scratch. And make sure to format logs correctly in order to take advantage of JSON field filtering that sumo offers. The system is daunting at first, especially when compared to simpler systems like Kibana, but honestly it is significantly more powerful and robust.

Being able to filter logs by type in production are very useful, seeing JSON fields formatted is a huge boon.

Time to market:

- Because Sumologic is a SAAS product, I don't need to run an ELK stack or manage any logging / storage infrastructure.

- Because Sumologic is a supported product, I have full access to a team of engineers who wrote the software and to customer success engineers to help leverage the all the features and debug mistakes

- Because Sumologic stores the raw logs, I can always refine and clean up the data in ad-hoc queries over historical data

- Because of the flexible query language, I can iterate on a data pipeline in minutes instead of hours or days (I'm looking at you DataFlow)

Taken as a whole, these features make it possible to quickly build out and iterate on complex log data.

Because Sumologic holds the raw logs (not just metrics), its always possible to clean the data in a way that would not be possible using only

- Enriching the data is somewhat hard

- Under load the UI is not as responsive as I would like

- Exporting the enriched data is somewhat hard

- For my use case, its very difficult to make reusable portions of queries that are shared by many searches / dashboard panels

- The tradeoff with log analysis tools like Sumo and others versus metric-based data is that complex queries take more time. This isn't a Sumologic problem, its just the downside of the flexibility that comes with log in general

- For large scale projects , care must be taken to stay within the various limits -- though compared to other tools like OpenTSDB Sumologic is much less limited

Think about total cost of ownership before choosing either an open source product (like OpenTSDB, ELK, Graylog, or InfluxDB). In particular, estimate:

* Capacity Planning -- what load will monitoring analytics solution need to handle at peak? Do you have staff with experience scaling out that platform to that scale? Are the scaling characteristics of this product at that scale well understood?

* Data ingest costs in your preferred cloud / on-premise hosting solution and how much infrastructure you'll need to ingest that data.

* Support Contracts -- How much will a support contract cost to help you get unstuck quickly?

* Time to build out an MVP -- will you need to manage lots of infrastructure yourself? Can you leverage an in-house operational team that will immediately prioritize your project above other work? (In many cases, in house teams are already over-committed in my experience)

* Familiarity with the Data -- if you already understand the data well (from working with it in a different product for example), you may not need the flexibility of Sumologic

* Cycle Time - How long will it take to make a single small change to your MVP? Minutes or days? Whats your dead line to having an acceptable version in production?

In short, if you are cash rich and time poor but need to iterate and scale rapidly, look at a SAAS offering like Splunk, Sumologic, or Elastic. In many cases, Sumologic will actually win on price over the offerings and for me, I've seen Sumologic perform well at high scale.

If you are time rich and cash poor or already understand your dataset / problem domain well AND you don't expect to scale out your system significant in the next 2 to 5 years, you might be able to save money by oeprating an open source product in house. However, you will almost certain pay with your development and maintenance time.

Overall business objective: Detection and understand root causes of problems with network traffic for online video.

Benefits:

- Faster time to market

- Reduced maintenance

- Customer support

- Domain expertise

- Fast Iteration

First of all it's a SAAS based tool which is easy to use and can use querying capabilities to parse complex logs easily and do analysis on logs, Dashboards are very easy to create and can share to teams easily.

Sumologic is very powerful tool which one can leverage its custom script supporting capabilities to get some custom logs by creating powershell or python scripts and pull the custom logs created to sumo UI.

Sumo can easily identify the enterprise application and infrastructure problems in a single shot by collaborating metrics data with log data which gives whole picture of what is happening in enterprise level.

Alerting is quite disturbing at times as it is gonna trigger many times and there is not tracking of alerts in dashboard,

Host metrics are quite confusing at times, documentation is huge and no easy way to get the right information quickly

Useful tool to try

Centralized log management ,

Infrastructure monitoring,

Custom metrics,

Root cause analysis for the errors

I like that some things can be done really quickly, like outlier detection and easy comparison to time shifted data. I also like that you can easily remove unique data from logs to get a good generic mapping of log data to better understand what is happening with your data. I really like the ease of parsing data and the way data is organized via _sourceCategory. Many high level functions are taken care of for you, so it makes it easier for a beginner to just pick up and use. The training provided is excellent. Keep the free certifications Sumo! Being web hosted, and offering a lower cost than competing products is nice as well.

I dislike that the query language is missing many features that competitors products offer, such as string aggregation where multiple values can be combined and split back apart when needed. No macros. Limited dashboard configuration. No way to do drilldowns from dashboard and much more. There just isn't a very good way to do low level manipulation of log data, group data across rows effectively without using a transaction command, or aggregating via numeric stats. It would be nice if panels could be made from dashboards without having to rely on previously made saved searches.

If Splunk isn't in the budget or your needs are not extreme, Sumo Logic will work well. There isn't as much user support as other product communities but there is free product certification and training provided by Sumo. Certs through competitive products are ridiculously expensive.

We are primarily using it for complex monitoring of log data and piping in SQL aggregate data to perform analyses over time when compared to other log data.

Before to this sumolog , I was having huge issue while searching my application log in different server . My application having 4 server and each server having no of logs . Some time , in case of any production issue , i have to find the issue and trace the log. Before sumolog , i have to login each server and find the log then individually i have to put the condition to refine the logs .But now, i am so comfortable and quickly able to add no of search parameter and sumo logic search all logs from all server environment at once . This is time saving , quick and less error prone . Good work sumo logic team .

initially i have to remember some search criteria but after while it's easy to use .

i recommend other people to use this server if you quickly want to see your logs. This is very efficient product for who is doing production support .

reading production logs for various application server .

I love that Sumo keeps tabs of your recent searches and that it gives you the ability to save searches/share them with others. I came from using a competitors log searching and Sumo has a lot of features I didn't even realize I needed.

There was quite a bit of a learning curve and I certainly had to brush up on my regex. Luckily Sumo has videos out that give you an introduction into using and navigating the software. I also don't like how difficult it is to download the raw logs. Currently (unless I'm misinformed) you need to export as a CSV, then take the relevant column, copy it all off, and paste it into a .txt file for additional analysis.

I'd recommend trying it out. It's confusing at first, but you can just watch some tutorials that are out there to get started.

A lot of our logs are indexed in Sumo. It gives us a central place to perform troubleshooting/log searching without actually having to log into the Servers where there are issues. It's extremely helpful to be able to look at the data for several servers over time. This is something that's simply not possible (very time consuming) if you were to perform this manually without Sumo Logic.

The ability to separate out your searched and rename them based on the search is a nice feature to have. Also, the live tail feature comes in very handy when you want to perform a constant monitoring of the logs being generated.

Also the ability to visualize and query logs and to pin all the different searched to the top tab list.

There is a bit of complexity in searching for a particular source category. Also, the need to use receipt time for ordering of the logs is a big no.

Also, the time it takes to show the log is time consuming. Also, on page refresh, the logs shown are not updated in case of last 15 minutes and show the logs of then last 15 minutes

understand the queries

Mostly used for logging and analyzing the logs in case of deployments and production bugs but also in analysis.

Sumo logic makes it easy to find training online and plenty of documentation to follow. Before I had an account, I was able to follow along with the certification training on YouTube and get a head start before the rest of my company got a chance to get official training. I don't normally contact support because all the information I need is readily available when I do a Google search. Otherwise, support responds pretty fast to my inquiries.

Our company uses G Suite, so I hate not having a single-click sign in with my Google account. The time-out for the logins are usually short, and I really don't want to setup 2-step verification or store my passwords in a browser. I would like it better if there was a mobile app that sent push notifications for alerts. For some alerts, the smallest interval you can set is 15 minutes, but I;d like to define whatever I want like 3 minutes.

Go through the training videos on YouTube first, they are only about an hour long and helps you get started quickly.

We need to get alerts as soon as something goes wrong, whether it be a status code error, or SSL certificates expiring. With Sumo Logic, I can set up alerts and have it sent to the right people when it happens. We also use Sumo Logic to set up dashboards and monitors on TVs around the office so everyone can see what's happening and have an open conversation about issues we need to fix.

Sumo is incredibly dependable. As someone who has helped maintain our own ES cluster in the past and use kibana in place of sumo logic, it was always a pain trying to keep things up and running, and ensuring no one was going to run queries that would bring the ES cluster to its knees at times. Sumo is incredibly dependable and reliable, even with very large sets of data and very expensive and large queries. The different visualizations it gives out of the box give us the insight we need for so many things.

Sharing queries and learning the query syntax can be a bit of a learning curve. I wish sharing were a better UX, although once you figure out how to do it it works fine. The query syntax for any service like sumo (ES, etc.) has always been difficult so I don't think it's any worse than others, just challenging at times.

Having a managed service for this allows you to focus on your business and its problems.

We pipe all log data from all of our different services into sumo to allow us to get insight into how our system is running, troubleshoot issues, and even run customer research to understand how users are interacting with our application.

I adore that I can scan for complex mixes of strings to limit the log explanations that I need to deal with by hand. In a high volume condition, this is completely key to effectively finding precisely what you're searching for.

In the event that I needed to whine about something it would be the postponement in time between when a log message is produced on my application and it touches base in Sumo. This can be two or three minutes or more. Be that as it may, as I have expressed previously, I'm in a high volume condition. Thus, I'm to some degree pardoning, realizing that it sets aside opportunity to record the majority of that freestyle content.

SumoLogic is a huge and complex stage. Be set up for an expectation to learn and adapt. You can perform straightforward demands all around effectively, yet you'll have to pursue a portion of their preparation materials to wind up capable with progressively complex highlights.

The Information Security group received Sumo Logic in the wake of encountering difficulties with another arrangement. Sumo Logic gave the InfoSec group out of the container dashboards and looks for countless information sources. Also, Sumo Logic empowered us to use various prior dashboards to make a solitary glass of sheet. This improved the groups productivity of inspecting vast volumes of information. At last, we had the capacity to use the alarming abilities to coordinate with another answer for guarantee that the group got cautions dependent on the groups inclusion hours.

Sumo Logic is really putting Security at the forefront of product enhancements. Integration with a variety of AWS services, G Suite, Okta, and their partnership with CrowdStrike have provided great visibility into our threat landscape. Field extraction rules, partitions, and data forward allow Information Security personnel to effectively search for information across various data sources in a consistent manner.

Although SumoLogic does have a great library of applications in the "App Catalog" there is still a need to build in custom api queries to the product. This becomes a necessity for the one-off SaaS applications that do not have a robust audit and logging system.

Many Information Security teams have compliance requirements for storing logs beyond 6 months, so I would strongly recommend leveraging Data Forwarding Rules to ensure that the company is meeting compliance requirements.

The Information Security team adopted Sumo Logic after experiencing challenges with another solution. Sumo Logic provided the InfoSec team out of the box dashboards and searches for a significant number of our data sources. In addition, Sumo Logic enabled us to leverage a number of pre-existing dashboards to create a single glass of pane. This improved the teams efficiency of reviewing large volumes of data. Finally, we were able to leverage the alerting capabilities to integrate with another solution to ensure that the team received alerts based on the teams coverage hours.

SumoLogic makes setting up log collection simple and fast, with a lot of mix focuses and configurable specialists. Inspecting logs from divergent and disseminated frameworks utilizing their inquiry dialect is generally straightforward, however can get mind boggling quick. In a universe of small scale administrations it is basic to probably inquiry logs from all running applications and their conditions so as to screen framework wellbeing and troubleshoot issues. Regardless of whether it is through rSyslog or introduced operators Sumo makes gathering logs from numerous frameworks a breeze.

The alarming administration isn't what I would anticipate from an undertaking item. We have numerous individuals signing in and making alarms, and the best way to bring together them so they are sensible is to put them all on shared records. In the event that they are made utilizing singular records, they must be relocated after an individual leaves, which appears to be pointless. It is an imperfection on a generally cleaned item

Sumo makes it exceptionally straightforward

Figure out how to send out accurately, Also, read documentations of the apparatus, so you don't invest additional quality work energy endeavoring to make sense of how to utilize the instrument. My greatest test was sending out in CSV with the information I required, when I made sense of this, my life was less demanding from that point. I'll unquestionably prescribe investing energy with the documentation before plunging into the application.If you are searching for a brisk kick off into logging, Sumo makes it exceptionally straightforward

SumoLogic makes setting up log aggregation easy and quick, with plenty of integration points and configurable agents. Reviewing logs from disparate and distributed systems using their query language is relatively simple, but can get complex fast. In a world of micro-services it is critical to be able to query logs from all running apps and their dependencies in order to monitor system health and debug issues. Whether it is through rSyslog or installed agents Sumo makes collecting logs from many systems a breeze.

The alerting management is not what I would expect from an enterprise product. We have many people logging in and creating alerts, and the only way to centralize them so they are manageable is to put them all on shared accounts. If they are created using individual accounts then they have to be migrated after a person leaves, which seems unnecessary. It is a blemish on an otherwise polished product

If you are looking for a quick jump-start into logging, Sumo makes it very simple.

Holistic application awareness across the entire stack. Sumo has made it extremely easy to get logs from application, virtual hosts, databases, message systems and other critical infrastructure. It allows us to see correlating events and quickly deep dive during or after incidents.

From the start the Sales team was very good at understanding their product and getting a solutions architect on board early to help you understand the best ways of getting information from your logs. They are open to lots of dialog and willing to make sure you are in a good place to succeed.

The ingestion tools are fairly simple and for us we defaulted most to the HTTP ingestion endpoint.

Parsing is very robust and extracting fields from your logs can be done a number of different ways.

The log-metrics ability was a real winner for us as we have a number of items that log metric information but aren't spitting them out as actual metrics endpoints. This basically allows you to do any custom metrics in a log line to work with.

The query language is fairly robust and allows for things like joins, subqueries, aggregation and log reduction and time comparisons.

As with any of these tools you must really understand their standard query language. It takes a little to get used to and you need to think through how to use it all.

I also would have expected more ways of ingesting the data to be built out. Things like common tools that would have been used.

The content library has taken me a little to get used to because even though my user has access to everything I still have to switch to the content administrator view to move things to root level folders.

Take the initial calls with the Sales team seriously and setup an ingestion as soon as possible to get the most value out of those conversations.

Centralized Logging

Alerting

Dashboards

Application Performance Management

Team Efficiency (Github Integration)

Using the app is easy. There's a bit of a learning curve but once you have the basics down everything works how you'd expect it to and everything is placed where'd you'd expect to find it. They also offer an amazing training a certification course to help you understand everything that you can do with Sumo Logic.

There are some issues parsing logs, but that's probably more on the way our logs are built than on Sumo Logic.

TAKE THE TRAINING! It helps a lot.

Gathering error logs after client reports something, Monitoring to stay ahead of the curb when something goes wrong.

I am using sumologic since 2016. It has very user friendly log search. There is a live tail feature which is very good. I think see http collector for my API s. The search are very fast. It provides wide array if parse querying with aggregation.

I also use the dashboard feature.

The alert email triggers sometimes don't work. The http collector endpoint url generated does not use authorization headers. It could be misused for spamming the collector.

Dark mode could be provided. Light search export feature could be enhanced better

I use sumologic for trouble shooting production issues in our API s

The team behind the product. This support and engineering teams were very helpful and used there knowledge of product to build out some useful dashboards

live mode reliability. Often live mode would not stay in continuous mode and i would have to refresh the page to get updated information. I also noticed that there were login issues a few times over the course of a 6 month trial 100% uptime is key to having a successful producct

I would recommend working with vendors services as there is often issues related to search api and dashboard issues that could not be resolved on user side.

real time analysis of the cdn and component involved in our pipelines. We did have to rely on other systems at time due to delays but setting up and not having to admin the infrastructure was helpful.

This is one of the best tool for checking logs, generating reports and metrics.

Very handy and provides lots of customizations to exact what we are looking out of the logs.

Using other apps like pager duty for getting sms and call alerts is very useful for timely acting on the prod issues.

I am not sure if there any things that can be disliked about Sumologic.

Bt yes, for tailing logs, it should show the history just like in log search.

Debugging production/ non production issues is very easy.

Generating reports and sharing with other teams is very handy.

Alerting system is one of the best features. Integrating with pager duty has helped in responding to issues on time. (I used pager duty in my previous client)

It saves time for pulling and searching logs as both can be done in a single place without any time. A single configure and log pull is easy to use and avoids searching logs in individual machines.

There is a time delay in pulling the logs. And unable to search for keyword and export only that logs.

the export format needs to be made better was its hard to search and read the exported files in CSV, better formatting is required.

Log analysis is made simple, and provides a single UI for multiples service logs.

The ease of use, I often find it doesn't take me long to find things. Having watched Ryan demo a few times, I've recreated parts of what he did to set up production monitoring that I'm quietly confident in.

Writing complex queries seems hard without attending certification.

It's the market leader in terms of function and ease of use. Plus it being a SaaS outside of your AWS account means your ass is covered if the AZ or region goes down.

Production issue monitoring has become much easier, especially when paired with a tracing solution.

It shows a pleasant and interactive visual interface. It manipulates data efficiently and provides us with performance metrics that we use to monitor our applications in real-time. The software alerts when events occur, we can solve without delay the performance problems or errors that arise.

Sumo Logic is definitely an exceptional place to monitor cloud infrastructure and detect vulnerabilities in applications on time.

We are quite satisfied with the performance of Sumo Logic. It meets the needs of our IT team, we have no complaints.

It's a proactive and efficient solution, suitable for IT experts.

It's great for unifying data, it gives us visibility into performance metrics, indexes and activity in the cloud. Its analysis tools help us obtain information about critical events and detect problems that need specialized solutions instantly.

Cloud native solution that behaves as a SaaS should. It has the potential to be a great platform, but it's not there yet.

The usability is the biggest drawback to the platform. It needs to be simpler to use and presented in more usable ways. The performance is also unbearably slow at times. When end users have time to go get a cup of coffee or maybe even go to lunch in the time it takes queries and dashboards to update/execute, it's too long.

There's lots of better options on the market at this point. Do your due diligence and pick the right platform for you.

Centralized log management across the organization. Best benefit is keep users from having to log into servers to view logs.

I do not need to worry about capacity and performance. We analyze data in bursts and we don't need to scale Sumo for the occasions. I also use metrics to analyze performance during the burst period.

UI has been improved quite a bit over the last two years. If any investment area that I could influence, I would like to have more attractive and interactive dashboards.

As a technology company, I also use other machine data analysis platform on-prem and in the cloud. One annoyance that I entered with the other cloud service provider is I have to live with "service upgrades" or outages. I never have to worry about that with Sumo.

Speed to resolve the customer's problem is a key driver for customer retention.

it is very simple to use, it looks almost like a mobile App, I like how simple it is to configure your dashboard,

and it gives you real-time metrics on our servers, also the incoming alerts are very easy to configure.

the dashboard allows to filter timeframes for every running job and not like other software where the time filter refreshes the entire dashboard

I think the customer service part still has room to improve, I've been on a long hold trying to reach someone on their hotline.

Day to Day monitoring, it is a reliable source of metrics and real-time monitoring on your infrastructure

I don't have a computer science background and my engineering team took a chance on me coming from Customer Support. Sumo was the primary environment that helped give me a better understanding of how our platform works. The logs are relatively easy to read once I learned our codebase. They're also great to reference when troubleshooting through bugs or errors.

I can't say that many negative things about it, to be honest. It's a platform that helps keep logs of our actions/events in our platform. As a Support Engineer, that helps me troubleshoot the root cause of bugs and basically do my job more efficiently.

Having a source of truth in terms of logs that our team can rely on for tackling technical platform or integration issues.

I've only used the Log Management solution provided by Sumo Logic, so this review is based on that.

It's a very powerful tool where you can query logs in pretty much any way you can imagine. Our service had very high log traffic across many services. Sumo logic was able to keep up, and we could query logs in a variety of ways.

It has a pretty steep learning curve. The query language is pretty solid, but it takes some time to figure it out.

Make sure you give it a good try. It's very powerful.

When debugging an error or series of events someone performed, sumo logic logs would make it easy to query the relevant logs and follow what went on. We could also query logs for usage stats and pretty much anything we could imagine.

The only reliable platform for our company to check and monitor alerts about APIs in all environments is Sumo Logic. And the best part is you need not submit the credit card details to them in case you need to try them out before switching to Sumo Logic completely.

Sumo Logic sends a hell lot of emails when APIs are not responding properly. Could be more consolidated.

It's really great to use Sumo Logic. It's easy to set up as it requires no integration with the system to get going. All the best for the future in monitoring the APIs and other network monitoring issues in the company you're working for!

To solve the API response time issues in the production.

Connecting data sources via REST endpoints. The ability to create and endpoint to send data to and have that data searchable within 30 seconds is fantastic

the search editor, please allow, us engineers love our text editors / IDE's please allow the ability to integrate 3rd party IDE's as search editors and visualisation platforms.

Try it. Remember that it is a large text search engine first

with a number of micro-services logging to Sumo we can correlate between them even if we don't have distributed tracing.

The speed at which it runs, the easy UX for creating search queries, and the ease of simple features like parsing and filtering that makes it nice for beginners like me

Visualizations don't feel super intuitive and how to group and chart information. Other data programs like reDash (just one example) feel easier to put together visuals.

Tracking usage of features and products by our users (sports technology application is the company). This, along with troubleshooting bugs, finding error codes to diagnose customer problems.

I like being able to easily search and correlate data across all our various log files. The query functionality is quite advanced compared to what is available when grepping log files at the command line.

It's never going to be as performant as searching fully structured/indexed data. We also have had issues bumping up against our ingress limitations (we have a lot of logs).

We use sumologic to do investigation during production outages as well as longer-term analysis during product launches (performance monitoring, etc). Using logs to drive dashboards can be challenging to set up but once you do, you not only have a nice high-level dashboard, you can dig in to the low-level details that you're putting into your logs.

The UI and export options. It's very easy to navigate around. Searching around is very easy as well. Compared to other logging tools have used in the past, this is definitely the best. Reading the documentation to understand different syntax definitely helps, it will makes your life easier trust me.

I don't dislike anything about it so far. The new beta UI, looks very nice as well, Can't wait for it to go GA. Splunk was another tool I use, but if I had to pick one between both, I'll definitely go with sumo logic.

Learn how to export correctly, Also, read documentations of the tool, so you don't spend extra quality work time trying to figure out how to use the tool. My biggest challenge was exporting in CSV with the data I needed, once I figured this out, my life was easier from there. I'll definitely recommend spending time with the documentation before diving into the application.

Double check with your IT team to make sure you have access to the source category that you need, which is one of the issue I faced, not having proper access, once granted it was smooth sailing from there on.

Logging issue, we want to retrieve logs of our application, especially when there's an error. Based on what we see, we can then know how to troubleshoot the error correctly. Different teams rely on this tool to be able to successfully perform their duty correctly, so far I can say it's working as expected.

It is advanced software with a lot of key functions to monitor the cloud. It saves us time in the detection of complex problems. Sumo Logic provides valuable information captured in real-time, allowing us to take action against failures that lower performance. It works seamlessly with AWS and Microsoft Azure.

I think nothing. Sumo Logic is a complete solution to monitor our infrastructure.

It's software that I recommend, because records are critical for early detection of faults. It is a valuable addition for IT departments.

The platform provides us with the indicators we need to maintain the health of our infrastructure. It is versatile, collects data continuously and is critical to detecting events in the cloud.

I work in a production support team. So, optimised logging is one of the most important criteria of our day to day job. We have so many prod servers and so many different services and jobs running on those servers which makes our job very difficult to debug in real time where the issue has occured. But, last year our company introduced Sumo Logic and believe me when I say this, It has actually made our life so much better and easier too. The ability to see the logs of all the different servers under one dashboard is like a dream for us because we don't need to open 5-6 simultaneous windows now to check each server individually. There you can see the server sane , service name and error description everything under 1 roof. It also triggers you email and messaging alerts in such cases. There are so many inbuilt scripts and wizards which make your day to day activities very easy as compared to manually writing scripts for each of those activities.

Nothing major I can contribute here, because it has been a real blessing for us. The only thing I will like to see is that if you try to.open archived logs then it takes too much time to open and sometimes even stop responding and the session will close automatically.

Sumo Logic has increased our productivity significantly. The response time to incidents has reduced drastically because we know exactly which server and which service has caused the issue. Everyone is sent notifications in case any of their associated services fail and help is required from their end to fix the issue.

The power of the query language, and the speed with which I can execute queries over _huge_ volumes of data. The ability to rapidly build dashboards for monitoring and showing metrics is _really_ snazzy too. It's also become an invaluable tool for troubleshooting bugs and incidents for $DAY_JOB.

There are some quirks to the query language, as powerful as it is, that can lead to some awkward code, e.g., not being able to use regex to _replace_ characters in strings. The UI can sometimes be _too_ smart and expose suggestion dropdowns instead of allowing me to simple navigate the query code using the arrow keys.

Metrics for monitoring. Troubleshooting application bugs and incidents.

We have been using Sumo logic for quite some time now. I have to say it has totally changed how we used to extract logs and then meaningful information from those raw logs. This is based upon SAAS which makes the query running that much more efficient and easier. Earlier we used to see 6-8 servers differently for any issues and then try to find the root cause for the same, but with this tool we have the logs from.all those servers merged into a single dashboard and there are complex queries running on that live stream which tells us which server has the issue and the exact error module too on that server.

It has helped our team tremendously, but there are a few things which I'll like to see done. Firstly the tool just hangs if you are running a complex query on historical data. Secondly they need to upgrade the UI to a fresher look and provide more documentation on all the features and give few examples on how to write complex queries. The learning curve is pretty steep with this tool.

Well, as I mentioned before our productivity has increased manier folds. It has saved us huge amounts of time and efforts to monitor only 1 dashboard in place of 6-8. The customer support team is excellent and always approachable in case of need.

I like the relative ease of getting started writing queries. You can certainly get quite complex with your queries, but to start you can create very simple queries that correspond to a specific log. Also, SumoLogic provides very in depth tutorials.

Sometimes the amount of information in the tutorials is overwhelming and it's hard to be certain what you should implement and what is not right for your specific use. Writing extremely useful queries is a skill in and of itself.

We are using SumoLogic for logging of several of our micro services. We can create dashboards, monitor patterns in errors, and debug using it. In many situations we couldn't debug without it.

The query syntax is like a simple functional language, and is quite intuitive to start using right away. The "parse" tool that lets you capture and parse strings might not seem like a big deal, but it saves you hours of mucking with regex captures.

The visualizations could be better; it should be easier to accomplish things like making a bar cart bar change color based on value.

For instance, if I'm recording transaction rates on a line graph, I want anything above a certain number of transactions/second to be a red line.

While there are free log analysis alternatives available on the market, consider that you often get what you pay for with monitoring solutions.

If you want to provide the best possible tooling to the people you are trust with one of the most critical functions of a tech team - making sure that your systems are running smoothly and protecting your revenue stream - give them Sumologic. This is a tool that will empower them to do their jobs and that they will enjoy using.

I've been using it to monitor the health of applications running in production, including dashboards to visually monitor health and automated alerts. As well, it's easy to create attractive dashboards to share business metrics and reports which can be easily exported to feed Excel reports for management & business stakeholders.

We use Sumologic mostly for log analysis. One of the easiest tools to create quick dashboards using the logs. We've created numerous dashboards on the fly when we needed to look at some quick numbers and data. We've also help a lot of the testing teams creating dashboards that eliminate the need of scrolling through hundreds of lines of logs. One of the other advantages is with centralized logging the process of going through approvals to view the logs for each servers and applications have now been eliminated. Also the ease of use has contributed to a good adoption rate.

A search using keywords gets the results but getting the surrounding messages can be a little tricky and someone who hasn't had much experience with SumoLogic can get overwhelmed while trying to get those messages. I've seen couple of instances where a developer went back to using a telnet client like Putty to look at logs. Once someone has spent enough time with SumoLogic it becomes a default tool to analyze the logs.

One of the key uses we've seen was during the holidays when we wanted to get the specific numbers and display it in the big screen for all business and this was done quite easily using Sumo. It helped tremendously to analyze the numbers and find issues.

Secure, very functional. I can find what I want, slice dice, make great julienne fries. Really this is the end all, be all solution for logging and parsing my data.

Sometimes it can be a bit slow with long time span queries

Expensive but worth the cost for immutable storage with excellent tools for parsing, dashboarding, alerting.

Security log management, Integrated Event Management, Alerting & Reporting. A single solution for multiple needs.

I enjoy sumo logic's ability to collate and aggregate data in real time. My app would not be troubleshoot-able quickly without it.

Aggregation data needs more features. Sorting transposed columns would allow us to prioritize what we want to see.

More ways to view and aggregate data

Speed of realizing when an issue has appeared and drilling in to troubleshoot it.

Notification instantly when any issue crops up in my fleet of servers.

We use Sumo logic on all our servers to query real-time logs and get the useful information from the query. Earlier we had to do it one server at a time, but now it is really simplified and made a lot easier after Sumo Logic came into the picture. Sumo Logic gives you real-time log metrics which are very essential to do the analysis part.

The query language is compelling but takes some time to get the basic understanding of writing a query, and with time it can get pretty complicated too if a lot of parameters are introduced. If the query or search is quite complex or old, then it gets a lag which is disappointing, to be honest from such a brilliant tool.

We have saved so much time through this tool because we can query all the servers from a single tool now and get hold of the issue very fast and resolve it. Thereby reducing the downtime for that service and helping massively in the service availability area.

- Allows me to look at logs from different services in our stack and understand how issues propagate across our component systems

- Has changed our workflow to proactively implement better monitoring and verification before big deploys

- Attempts to log you out very quickly when not focused on the tab

- Sometimes hard to configure services/middlewares to build nested JSON in ways that don't require multiple parsing steps

Get buy in from multiple users and communicate by sending Sumo queries as answers to questions to encourage use.

As a developer, I've used Sumo for both incident response and for logging application data. For example, we can route HTTP safe requests to multiple versions of an endpoint and log any unexpected differences in Sumo, helping us ensure quality before deploying major changes or deprecations. I'd say it's a central part of my workflow now.

I really like the dashboards! We’ve got 10 dashboards at current all displaying different metrics, we can display whatever we want to show by typing some search metrics

Some of the documentation does need updating from Sumo’s logics side when trying to get one of the app collections setup it have a few out of date areas

We use it all the time finding out when our AWS EC2 instances are going down using the alert notifications to notify us when it does, it gives us a clearer picture as it why this happens so we can look at solutions to the errors

The panel is complex, but intuitive. It provides advanced features to monitor applications. It is effective to detect anomalies and failures related to security. Sumo logic plays an important role in protecting our applications in real-time. It allows us to optimize operations, all from a platform that unifies the tasks of analysts. It's really versatile.

It is difficult to find any feature that I do not like because it works very well.

It is an outstanding app. It is effective and versatile.

It is a great tool for identifying problems at the time. Increases the efficiency of our IT department.

The display of real-time dashboards is useful for our team.

Centralizes the flow of data, which simplifies the monitoring of events.

It is a product with advanced features, but somewhat expensive.

It is a sophisticated software designed for IT equipment, it is an intelligent solution to monitor security in the cloud.

It is the solution that our team needs to monitor events in the cloud and collect real-time metrics understandable. The alert system is really efficient to detect problems early, it's beneficial and helps us focus on solving the problem.

It provides a means to monitor and correlate complex data effectively and intelligently.