Hi,
The main differences between syslog-ng PE and OSE:
- Professional support
- Pre-compiled and deeply tested binaries on various platforms
- PE only features like
WEC (Windows Event Collector),
Splunk destination,
Reliable log transport (ALTP),
Tamperproof log storage with logstore
These are the main differences, rest of them can be found on syslog-ng.com
Thanks @GerglyBodnar
Let me ask in this way
What is the challenge of using SyslogNG OSE for Splunk? If in case I just need to have some syslogs written to file and forward using UF.
If you don't want to utilize Splunk HEC, only using UF then the OSE version also can be a good choice for you. In that case when you have high traffic you have to take care of the load balancing/scaling towards Splunk by yourself.