Collecting logs from various systems (e.g. syslog, nginx, mongodb, etc.)

We currently have a TICK stack and we were thinking if it’s advisable to use the built-in support for log collection or should we build a different system for collecting logs for ops/analysis? How are you doing this in your organization?


I tried inputs.syslog plugin to collect logs. It worked well. But I installed a Graylog to store logs because Elasticsearch is better sollution to store and search text based data. InfluxDB better in time series data store. But this is just my opinion. I suggest make a try with inputs.syslog plugin. It support TLS encryption well.