Overview

Loggly is a cloud-based service specializing in log management and analysis, acquired by SolarWinds in 2015. Its primary function is to collect, parse, index, and visualize log data from diverse sources, including servers, applications, and cloud environments. The platform is engineered to offer centralized log aggregation, which assists development and operations teams in consolidating log streams that would otherwise be distributed across multiple systems. This centralization aims to simplify the process of monitoring system health, identifying performance bottlenecks, and troubleshooting errors.

Loggly's target audience includes small to medium-sized businesses (SMBs) and teams within larger organizations that require a streamlined approach to log analysis without the overhead of managing on-premise logging infrastructure. It is designed to be accessible, offering a user interface that facilitates searching, filtering, and visualizing log data. The service supports real-time log analysis, allowing users to monitor events as they occur. This capability is critical for incident response, as it enables teams to detect and react to issues promptly. For example, anomaly detection features can alert users to unusual patterns in log data, potentially indicating security breaches or system failures.

The platform shines in scenarios where rapid deployment and minimal configuration are priorities. It offers various integration methods, including direct API submission, Syslog, and agents, to ingest logs from different environments. Once logs are ingested, Loggly automatically parses common log formats and allows for custom parsing rules. This structured approach to log data makes it easier to perform advanced queries and generate meaningful dashboards. The emphasis on ease of use extends to its alerting system, which can notify users via email, Slack, or webhooks when specific log patterns or thresholds are met. Loggly's cloud-native architecture means it scales with data volume, removing the need for users to manage storage or compute resources for log processing.

While Loggly provides comprehensive log management, organizations requiring extensive security information and event management (SIEM) capabilities or highly customized, on-premise deployments might explore alternatives like Splunk Enterprise for advanced security analytics. However, for organizations focused on operational logging, application performance monitoring, and infrastructure health, Loggly offers a focused solution. Its compliance certifications, including SOC 2 Type II, GDPR, and HIPAA, address regulatory requirements for data handling, making it suitable for environments with strict data governance needs.

Key features

  • Centralized Log Aggregation: Collects logs from servers, applications, cloud services, and custom sources into a single platform for unified visibility.
  • Real-time Log Analysis: Processes and displays log events as they happen, enabling immediate detection and response to operational issues.
  • Automated Log Parsing: Automatically identifies and structures data from common log formats (e.g., JSON, Apache, Syslog) and supports custom parsing rules.
  • Interactive Dashboards: Provides customizable dashboards for visualizing log data, trends, and metrics, aiding in quick data exploration and pattern identification.
  • Powerful Search and Filtering: Offers a robust search syntax and filtering options to quickly pinpoint specific log events or patterns within large datasets.
  • Alerting and Notifications: Configurable alerts based on log volume, specific events, or predefined thresholds, delivered via email, Slack, PagerDuty, or webhooks.
  • Anomaly Detection: Identifies unusual log patterns or deviations from baseline behavior, potentially indicating system issues or security threats.
  • API for Log Submission: Offers a REST API for programmatic log ingestion, allowing integration with custom applications and services as detailed in the API overview.
  • Compliance Standards: Adheres to compliance standards such as SOC 2 Type II, GDPR, and HIPAA, supporting data security and privacy requirements.

Pricing

Loggly offers a tiered pricing model based on daily data volume and log retention period. A free Lite tier is available for evaluation and small-scale use.

Pricing as of May 2026:

Tier Daily Data Volume Log Retention Monthly Cost (approx.)
Lite 200 MB 7 days Free
Standard 1 GB 15 days $49
Pro 5 GB 30 days $199
Enterprise Custom Custom Contact Sales

For more detailed information on pricing and custom plans, refer to the official Loggly pricing page.

Common integrations

  • Amazon Web Services (AWS): Integrates with AWS services like CloudWatch, S3, and Lambda for collecting logs from cloud infrastructure.
  • Azure: Supports log ingestion from Microsoft Azure services.
  • Google Cloud Platform (GCP): Connects with Google Cloud services to collect application and infrastructure logs.
  • Docker: Provides methods for collecting logs from Docker containers and containerized applications.
  • Kubernetes: Integrates with Kubernetes environments for centralized logging of container orchestration.
  • Syslog: Standard Syslog protocol support for collecting logs from network devices, servers, and applications.
  • Apache HTTP Server: Specific configurations for ingesting access and error logs from Apache web servers.
  • Nginx: Integration for collecting logs from Nginx web servers.
  • JavaScript: Libraries and examples for sending client-side logs from JavaScript applications.
  • Node.js: Integrates with Node.js applications for server-side log collection.
  • Python: SDKs and examples for sending application logs from Python-based services.
  • Java: Libraries like Log4j and Logback can be configured to send logs directly to Loggly.
  • PHP: Supports log collection from PHP applications and frameworks.
  • Ruby on Rails: Integrates with Rails applications for capturing server and application logs.
  • Operating Systems: Agents and configurations for sending logs from Linux, Windows, and macOS systems.
  • Slack: Integration for sending alerts and notifications directly to Slack channels.
  • PagerDuty: Connects with PagerDuty for incident management and on-call alerting.
  • GitHub: Can be used for correlating log events with code deployments or changes.

Alternatives

  • Splunk: An enterprise-grade platform for machine data, offering extensive capabilities for operational intelligence, security, and analytics.
  • Mezmo (formerly LogDNA): A cloud-based log management solution known for its real-time tailing, powerful search, and developer-friendly interface.
  • Elastic Stack (ELK): An open-source suite comprising Elasticsearch, Logstash, and Kibana, popular for self-hosted log management and analysis.
  • Datadog Log Management: Part of the broader Datadog monitoring platform, offering log collection, processing, and analysis integrated with metrics and traces.
  • Sumo Logic: A cloud-native analytics platform for logs and metrics, providing security, operations, and business intelligence solutions.

Getting started

To begin sending logs to Loggly, you can use various methods. A common approach for server-side applications is to configure Syslog. Below is an example of sending a simple log message using curl to Loggly's HTTP/S event endpoint, which requires your unique customer token.

First, obtain your customer token from your Loggly account. Then, you can send a basic log event:

# Replace YOUR_CUSTOMER_TOKEN with your actual Loggly customer token
# Replace YOUR_TAGS with comma-separated tags like 'webserver,production'

curl -A "curl" -H "content-type:text/plain" \
  --data-binary '{"message": "Hello from fwdgrade! This is a test log entry.", "level": "info"}' \
  https://logs-01.loggly.com/inputs/YOUR_CUSTOMER_TOKEN/tag/YOUR_TAGS/

For more structured logging, especially from applications, you would typically configure a logging agent or use an SDK specific to your programming language. For instance, in a Node.js application, you might use a library like Winston or Bunyan with a Loggly transport. Here’s a conceptual example using Winston:

const winston = require('winston');
require('winston-loggly-bulk'); // Assuming you have 'winston-loggly-bulk' installed

// Configure the Loggly transport
winston.add(new winston.transports.Loggly({ 
    token: "YOUR_CUSTOMER_TOKEN", 
    subdomain: "YOUR_SUBDOMAIN", // e.g., 'yourcompany'
    tags: ["nodejs", "app-logs"],
    json: true
}));

// Log a message
winston.log('info', 'This is a test message from a Node.js application.');
winston.log('warn', 'A warning occurred: disk space is low.');

Remember to replace YOUR_CUSTOMER_TOKEN and YOUR_SUBDOMAIN with your actual Loggly credentials. Detailed instructions and language-specific examples are available in the Loggly documentation.