Join waitlist
Back to products
Sloggo

Sloggo

Minimal syslog collector and viewer based on DuckDB

Website github.com
Overview

What it is

Sloggo is a minimal RFC 5424 syslog collector and viewer based on DuckDB. Runs as a single, resource-friendly process.

Intent

I need it when

Collect and view syslog messages in real-time from small infrastructure without heavy resource overhead

Sloggo ingests RFC 5424 syslog over TCP and UDP, stores logs in DuckDB, and provides a clean web UI for viewing. It runs as a single lightweight process under 10 MiB compressed, making it ideal for small to medium setups that need real-time log visibility without JVM or Kubernetes overhead.

Search, filter, and tail logs quickly with a modern interface

Sloggo offers fast search, filtering, and tailing capabilities through a clean web UI built with data-table-filters React components, enabling operators to quickly locate and monitor specific log entries without complex query syntax.

Store and retain logs locally with configurable retention policies

Sloggo stores logs in DuckDB with configurable retention via SLOGGO_LOG_RETENTION_MINUTES environment variable (default 30 days), allowing operators to control local storage without external database dependencies.

Deploy a log collector with minimal configuration in containerized environments

Sloggo provides Docker/Podman container support with simple environment variable configuration (SLOGGO_LISTENERS, port settings, retention policy), allowing rapid deployment without complex setup or external dependencies.

Ingest high-volume syslog traffic efficiently on resource-constrained systems

Sloggo supports up to 1 million logs per second ingestion rate and runs as a single resource-friendly process, making it suitable for environments where traditional log aggregation stacks would be overkill or consume too many resources.

Drop

Not a fit when

  • When you need production-ready log management with guaranteed uptime and SLA support, as Sloggo is explicitly in alpha and not recommended for critical systems
  • When you require high availability, redundancy, or failover capabilities, as Sloggo is a single-process solution without built-in redundancy
  • When you need long-term log storage and retention at scale, as Sloggo is designed for small to medium setups with default 30-day retention
  • When you need enterprise security features like encryption, authentication, or role-based access control, as Sloggo has no security layer by default
  • When you need to ingest logs from non-RFC 5424 syslog sources at scale, as Sloggo is specifically built for RFC 5424 protocol compliance
Commercials

Pricing

Open source, free to use