"Graylog2 is an open source log management solution that stores your logs in ElasticSearch. It consists of a server written in Java that accepts your syslog messages via TCP, UDP or AMQP and stores it in the database. The second part is a web interface that allows you to manage the log messages from your web browser. Take a look at the screenshots or the latest release info page to get a feeling of what you can do with Graylog2..."

http://graylog2.org/about

"Syslog is okay for logging system messages of your servers. Use it for that. GELF instead is great for logging from within applications. It is a good practice to send GELF messages directly from your existing logging classes so it is very easy to integrate into existing applications. You could use GELF to send every exception as a log message to your Graylog2 server. You don't have to care about timeouts, connection problems or anything that might break your application from within your logging class because GELF is sent via UDP. The disadvantage of this fire and forget principle is of course that no one guarantees that your GELF message will ever arrive. I'd say that important messages will just occur again. TCP support for those who like it is coming though..."

https://github.com/Graylog2/graylog2-docs/wiki/GELF

So... I wrote a tool to send syslog events to graylog2 via AMQP :D

https://github.com/ncode/logix
https://github.com/locaweb/logix