No more typing reviews! Try our Samantha, our new voice AI agent.
syslog-ng Logo

syslog-ng Reviews

Vendor: One Identity
4.5 out of 5
Leave a review

What is syslog-ng?

Syslog-ng is recognized for its proficiency in log extraction, storage, and secure TLS connections. Its efficient configuration and real-time monitoring integration make it a preferred option for large-scale log processing, ensuring compliance with regulatory standards.

Get the syslog-ng Buyer's Guide and find out what your peers are saying about syslog-ng, Wazuh, Datadog and more!
syslog-ng is the #16 ranked solution in Log Management Software. PeerSpot users give syslog-ng an average rating of 9.0 out of 10. syslog-ng is most commonly compared to Wazuh: syslog-ng vs Wazuh. syslog-ng is popular among the large enterprise segment, accounting for 55% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a government, accounting for 11% of all views.
Buyer's Guide
syslog-ng
April 2026
Get the report
Helped 892,487 peers since 2012

Featured syslog-ng reviews

Read more reviews

syslog-ng mindshare

As of May 2026, the mindshare of syslog-ng in the Log Management category stands at 1.5%, down from 2.5% compared to the previous year, according to calculations based on PeerSpot user engagement data.
Log Management Mindshare Distribution
ProductMindshare (%)
syslog-ng1.5%
Splunk Enterprise Security6.8%
Wazuh5.4%
Other86.3%
Log Management

PeerResearch reports based on syslog-ng reviews

TypeTitleDate
CategoryLog ManagementMay 2, 2026Download
ProductReviews, tips, and advice from real usersMay 2, 2026Download
Comparisonsyslog-ng vs Splunk Enterprise SecurityMay 2, 2026Download
Comparisonsyslog-ng vs WazuhMay 2, 2026Download
Comparisonsyslog-ng vs CriblMay 2, 2026Download
Suggested products
TitleRatingMindshareRecommending
Wazuh3.75.4%81%50 interviewsAdd to research
Datadog4.34.0%97%208 interviewsAdd to research
 
 
Key learnings from peers

Valuable Features

Syslog-ng offers efficient log extraction and storage, easy log access, and real-time monitoring integration with various systems. Its C-style configuration is user-friendly, aiding in reading and writing. Users highlight its high performance and ease of use for large data volumes. The system's compound search feature aids in specific log searches, and its clear documentation supports feature expansion. Syslog-ng's straightforward architecture includes sources, destinations, and filters, enhancing understanding and utility.
  • "What I appreciate most about syslog-ng is its configuration; its C-style config is much easier to understand, read, and write than other popular solutions such as syslog or rsyslog."
  • "We chose syslog-ng because it is easy to install, easy to maintain, easy to update, and due to the fact that all data arrive in raw format, we can manipulate it as we want."
  • "For us, the most valuable feature is the use of compound search for searching logs at a specific time, by a specific user, or specific behavior."

Room for Improvement

Syslog-ng does not serve as a true SIEM and requires expertise for such uses. Filtering options are limited and need enhancements. There's a need for better integration possibilities, including Kafka, and more knowledgeable professionals. Users encounter configuration issues like misplaced decimals and improperly named agents. Observability can be improved, and while earlier versions lacked features, later implementations met expectations without needing patches.
  • "In syslog-ng, I think a GUI would be beneficial. I am unsure if the premium module has a GUI to administer it."
  • "There is room for improvement in terms of observability."
  • "There is always the potential for additional integration and protocol extensions."

Pricing

syslog-ng is open-source and free.

  • "Syslog-ng is open-source."
  • "Syslog-ng is a free open-source solution."

Popular Use Cases

Syslog-ng is primarily used to aggregate and filter logs, automate tasks via batches and scripts, and perform enterprise security audits for compliance with regulations like GDPR in Brazil. Organizations utilize it as a temporary SIEM replacement and for compliance with law enforcement requirements. It enables efficient log processing and helps ensure adherence to data regulations, serving a critical role in security and compliance initiatives.

Service and Support

Syslog-ng is praised for ease of use, eliminating the need for support for many users. Installation is straightforward, and in-house staff can manage it without external help. For those who contacted the support team, feedback is positive, highlighting quick responses, though some desire immediate troubleshooting access. Users rate their experience highly, with one user giving it an eight out of 10 and another a nine and a half. Overall, support is considered responsive and competent.

Deployment

Users found syslog-ng's initial setup easy, giving it a nine out of 10 for its simplicity. Installation is straightforward, resembling syslog installations, but there's a desire for bundled packages with dependencies for easier deployment. Documentation is praised, and familiarity varies among users. On Linux, installation from the repository completes the process, and the default configuration effectively handles local logging. Multiple people are typically involved in management and maintenance.

Stability

Respondents indicate syslog-ng is highly stable without outages or crashes. They report no significant issues related to memory or processing, even when handling large data volumes. Users mention that any concerns, like buffer workflow interruptions, are usually tied to external storage, not syslog-ng itself. Stability is often rated nine out of ten, reflecting strong reliability and consistent performance across various implementations, ensuring users have confidence in its ongoing operation.
These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.
Download our syslog-ng Buyer's Guide for additional reliable information.

Review data by company size

By reviewers
Company SizeCount
Small Business3
Midsize Enterprise1
Large Enterprise3
By reviewers
By visitors reading reviews
Company SizeCount
Small Business111
Midsize Enterprise96
Large Enterprise258
By visitors reading reviews

Top industries

By visitors reading reviews
Government
11%
Financial Services Firm
10%
Manufacturing Company
9%
Computer Software Company
7%
Educational Organization
6%
Energy/Utilities Company
6%
Comms Service Provider
6%
University
6%
Healthcare Company
4%
Media Company
4%
Retailer
3%
Construction Company
3%
Insurance Company
3%
Hospitality Company
3%
Transportation Company
2%
Marketing Services Firm
2%
Outsourcing Company
2%
Recreational Facilities/Services Company
2%
Aerospace/Defense Firm
1%
Real Estate/Law Firm
1%
Performing Arts
1%
Wholesaler/Distributor
1%
Logistics Company
1%
Non Profit
1%
Consumer Goods Company
1%
Pharma/Biotech Company
1%

Compare syslog-ng with alternative products

Go!

Learn more about syslog-ng

Syslog-ng offers powerful log management capabilities, accommodating complex search needs while maintaining simplicity with user-friendly documentation and real-time monitoring features. The C-style configuration enhances readability, allowing users to easily comprehend and implement changes. Designed for high performance, Syslog-ng scales effectively to handle extensive logging demands. Despite its strengths, areas for improvement include integration with protocols and filtering methods. Users advocate for better Kafka integration and a graphical configuration interface to simplify setup. While historical dissatisfaction led to custom patches, subsequent updates have addressed these concerns. Currently, users seek an advanced version to access premium functionalities.

What are the most important features of syslog-ng?
  • Log Extraction and Storage: Streamlined processes for efficient data handling.
  • TLS-Supported Secure Connections: Ensures secure data transmission over networks.
  • Real-Time Monitoring Integration: Enhances proactive decision-making capabilities.
  • "C-Style" Configuration: Improves readability and simplifies setup for users.
  • High-Performance Log Processing: Supports large-scale environments with ease.
What benefits should users look for when evaluating syslog-ng?
  • Easy Configuration: Reduces time and complexity for initial setup and adjustments.
  • Compliance Assurance: Facilitates adherence to data regulations in Brazil and Italy.
  • Intuitive Examples and Documentation: Simplifies user training and onboarding.
  • Smooth Multi-Server Setups: Enables efficient deployment across multiple servers.

Organizations frequently use syslog-ng for log aggregation, filtering, and regulatory compliance, serving as a crucial component in enterprise security audits and data regulation adherence in Brazil and Italy. By allowing logs to be stored in raw format, syslog-ng provides versatility in data manipulation and user activity tracking, making it user-friendly for installation, maintenance, and updates. Logs can be transmitted over TLS or plain text to central servers, supporting varied transmission needs.

syslog-ng customers

Tecnocom, University of Victoria, University of Exeter, Datapath

Related questions

  • 85
When evaluating Log Management tools and software, what aspect do you think is the most important to look for?
  • 444
Datadog vs ELK: which one is good in terms of performance, cost and efficiency?
  • 87
Which Windows event log monitoring tool do you recommend?
  • 80
What is the difference between log management and SIEM?
  • 71
Splunk vs. Elastic Stack
  • 50
How can Cloudtrail logs be used effectively to improve log monitoring?
  • 127
Why hot data and cold data differences in SIEM solutions are not discussed sufficiently?
  • 173
When evaluating Log Management solutions, what aspect do you think is the most important to look for?
  • 62
When evaluating Log Management solutions, what aspects do you think are the most important to look for?
  • 52
Why are Log Management tools important for companies?

Product Categories

Product Categories
Log Management

Popular Comparisons

Popular Comparisons
Wazuh vs syslog-ng Logo
Wazuh vs syslog-ng
Datadog vs syslog-ng Logo
Datadog vs syslog-ng
Splunk Enterprise Security vs syslog-ng Logo
Splunk Enterprise Security vs syslog-ng
IBM Security QRadar vs syslog-ng Logo
IBM Security QRadar vs syslog-ng
Cribl vs syslog-ng Logo
Cribl vs syslog-ng
Elastic Security vs syslog-ng Logo
Elastic Security vs syslog-ng
Grafana Loki vs syslog-ng Logo
Grafana Loki vs syslog-ng
LogRhythm SIEM vs syslog-ng Logo
LogRhythm SIEM vs syslog-ng
Graylog Enterprise vs syslog-ng Logo
Graylog Enterprise vs syslog-ng
Security Onion vs syslog-ng Logo
Security Onion vs syslog-ng
Elastic Stack vs syslog-ng Logo
Elastic Stack vs syslog-ng
IBM SevOne Network Performance Management (NPM) vs syslog-ng Logo
IBM SevOne Network Performance Management (NPM) vs syslog-ng
Amazon CloudWatch vs syslog-ng Logo
Amazon CloudWatch vs syslog-ng
ManageEngine Log360 vs syslog-ng Logo
ManageEngine Log360 vs syslog-ng
Devo vs syslog-ng Logo
Devo vs syslog-ng
See all alternatives
 
syslog-ng Reviews Summary
Author infoRatingReview Summary
IT Infrastructure & Cloud Security Manager at Thux5.0I use syslog-ng to ensure compliance with Italian privacy laws by securely logging system administrator activity; it's easy to install, stable, and scalable, though I’d appreciate a GUI and look forward to exploring premium features.
Senior Software Engineer at Five95.0I've used syslog-ng for over 10 years due to its clear C-style configuration, excellent performance, and stability. It's easy to set up and highly effective for complex log processing without needing support. I highly recommend it.
Data center analyst at Atvos5.0We use syslog-ng primarily for compliance with Brazilian law enforcement, valuing its compound search capability for examining logs by time, user, or behavior. However, we see opportunities for improvement in observability and potential Kafka integration.
Solution Architect(Splunk- Log Management) at Tata Consultancy4.0The primary purpose of syslog-ng is to aggregate and filter logs for ingestion into Splunk. I value its separate configuration file feature, though I feel the filtering options could be improved to better fit varied logging needs.
Senior Director and Senior Systems Engineer (Dual Role), IT Infrastructure and Security at a financial services firm with 51-200 employees3.5I use syslog-ng to aggregate logs as a temporary replacement for a SIEM solution. It has useful built-in features for creating alerts, although it's not a true SIEM solution and requires expertise for effective use in SIEM scenarios.
Consultant at CITS - Centro Internacional de Tecnologia de Software4.0I use syslog-ng to automate task batches and scripts without a user interface. Its most valuable feature is log extraction and storage. However, there’s room for improvement, particularly in enhancing integration and protocol extensions.
CISO at LGPDNOW5.0I use syslog-ng for enterprise security audits to comply with data regulations like GDPR in Brazil. It simplifies log access and integrates for real-time monitoring, though finding knowledgeable users can be challenging due to configuration issues.