Following the changes, Graylog realized they had an opportunity to further enrich their customers’ data. The company knew that anyone who had IP addresses reported somewhere in their logs also had a real desire to translate that information into a physical location, whether it be as specific as exact coordinates or simply a city name. Pinpointing location proved especially important for security use cases and Graylog set out to find a partner who could provide that information for their customers.
“We’ve seen over the past few years that more and more people are interested in running something like Graylog in the cloud. They were specifically looking for a cloud service, something they could sign up to, get a web interface, and get everything they need without needing to put extra effort into running and scaling it.”
Another thing that stood out to the team at Graylog? How fast IPinfo was able to complete the implementation of its ASN and Geolocation APIs and start enriching their data in real time. After a short testing period, the solution was ready to go and now updates daily.
“I think the first thing that we noticed was that it was really easy to do business [with IPinfo]. It was immediately a company we could talk to who really understood our problem, understood what we needed, and immediately understood our level and how technical we are so we wasted no time. It was an incredibly easy process.”
With their clients in mind, Graylog went to the market to research what kind of IP geolocation databases were available. IPinfo was a name that kept coming up for Founder and CTO Lennart Koopman. He quickly reached out to the team at IPinfo and realized they would be a great fit.
“IPinfo allowed us to download all the information in one database file that would live locally on our server. That meant we wouldn’t introduce any issues with latency or connections because we have people who send us hundreds of thousands of logs per second. We can’t ask their API every single time. We need that file that we can cache and access very rapidly. And that was the perfect combination for us.”
With the IPinfo integration, Graylog can now:
To top it off, IPinfo works so well with Graylog’s existing tech stack that there was almost no change for them on the back end. Once the implementation was complete, their customers’ logs were automatically updated with location data thanks to IPinfo’s API.
“Our customers know what an IP lookup is, and they say, ‘It’s awesome that we get Graylog Cloud and it’s just there and it’s so fast that we don’t have to think about it.”
Since using IPinfo, GreyNoise has become recognized as the go-to Anti-Threat Intelligence source.
CFC uses IP address data to build the insurance of the future, develop threat intelligence, and manage risks.