I think Cisco gives out a free Prime with limited number of devices like 20 for testing or else it was certain length of time like an evaluation copy so you can try before buying , to be honest few years back it was crap i would not recommend it but it has come along way and the road map for its integration with ACI and IWAN and other features like compliance and PSIRT are very good , its worth testing anyway but it is purely for Cisco devices
syslogs theres only 1 would say without a doubt its splunk that i would recommend the ability to drill into it is very good , again though not cheap but can be purchased per amount of syslogs you send so can be controllable ,
At the minute were on NetQos its good but does have its issues , we have lost data etc in certain periods or parts of flows which can be frustrating when troubleshooting but other than that its granular and easy to use,UIM is the next version of NetQos i have only been through a poc so far, we are deploying it this year so i will know more then if its better but CA stated they have fixed the issues we ran into previously in UIM so fingers crossed , i suppose the netflow requirements depend on how many devices you will have using it, we have around 1000 network devices so you need something thats able to handle that amount of traffic and CA at the time were the only real option out there that were well known and had the support behind them if something went wrong
