Visual Syslog Server for Windows is a free open source program to receive and view syslog messages.
Useful when setting up routers and systems based on Unix/Linux.
Visual Syslog Server for Windows has a live messages view: switches to a new received message. Helpful color highlighting.
Useful message filtering. Customizable notification and actions.
Read in Russian / Читать на русском языке
Features
- Receive messages from various devices via UDP or TCP protocol (compliant to RFC 3164)
- Syslog messages are displayed in real-time
- Stores messages in files on disk
- Log file rotation by size or by date
- Filter displayed syslog messages based on facility, priority, host, source address, tag or message contents
- Customizable color highlighting with nice 3D design
- Generating notifications depending on the content of the received message:
- Show alarms windows
- Play sound file
- Send e-mail notifications via smtp server
- Customizable notices format
- Performs actions depending on the content of the received message:
- Run external program with params
- Saving message to the specified file
- Support for sending mail via SMTP server with authentication SSL / TLS
(Support Gmail and iCloud mail smtp servers. You can use the push notifications on your mobile device for instant delivery of alarms.) - Lightweight and very fast
- Run as a Windows application
- Minimize to system tray
- Support Windows XP/Vista/7/8/8.1, Windows Server 2003/2008/2012
- Easy to install: adjustment is not required
- Import historical syslog messages after the start of the program
- View syslog messages from the file
- The ability to receive messages encoded in UTF8
- Free open source software, licensed under the GPL V2
Download
Visual Syslog Server for Windows download installer:
Last developper snapshot 1.6.2
Latest stable release 1.6.2
Installation
After installation Visual Syslog Server for Windows works immediately: adjustment is not required.
Waiting for messages on the UDP and TCP port 514 (default setting).
Visual Syslog Server is an Windows application (installing a system service is not required).
Installer adds firewall exception.
Building from sources
To build Windows Syslog Server from sources use CodeGear RAD Studio C++Builder 2007
Main project file visualsyslog.cbproj
Required components: Indy.Sockets (VCL) version 10
To build the installer, use Inno Setup Compiler 5.5.1(a)
Installer project file visualsyslog.iss
Support
Your questions and suggestions please send to 
Future plans
- Message statistics
If you need these or other functions let me know.
Screenshots
Color highlighting setup
Message processing setup
Main setup
Files rotation setup
Smtp server setup to send e-mail messages
Visual Syslog Server for Windows
Visual Syslog Server for WindowsVisual Syslog Server for Windows is a free open source program to receive and view syslog messages.
Useful when setting up routers and systems based on Unix/Linux.
Visual Syslog Server for Windows has a live messages view: switches to a new received message. Helpful color highlighting.
Useful message filtering. Customizable notification and actions.
Read in Russian
Features
- Receive messages from various devices via UDP or TCP protocol (compliant to RFC 3164)
- Syslog messages are displayed in real-time
- Stores messages in files on disk
- Log file rotation by size or by date
- Filter displayed syslog messages based on facility, priority, host, source address, tag or message contents
- Customizable color highlighting with nice 3D design
- Generating notifications depending on the content of the received message:
- Show alarms windows
- Play sound file
- Send e-mail notifications via smtp server
- Customizable notices format
- Performs actions depending on the content of the received message:
- Run external program with params
- Saving message to the specified file
- Support for sending mail via SMTP server with authentication SSL / TLS
(Support Gmail and iCloud mail smtp servers. You can use the push notifications on your mobile device for instant delivery of alarms.) - Lightweight and very fast
- Run as a Windows application
- Minimize to system tray
- Support Windows XP/Vista/7/8/8.1, Windows Server 2003/2008/2012
- Easy to install: adjustment is not required
- Import historical syslog messages after the start of the program
- View syslog messages from the file
- The ability to receive messages encoded in UTF8
- Free open source software, licensed under the GPL V2
Download
Visual Syslog Server for Windows download installer:
Last developper snapshot 1.6.4
Latest stable release 1.6.4
Installation
After installation Visual Syslog Server for Windows works immediately: adjustment is not required.
Waiting for messages on the UDP and TCP port 514 (default setting).
Visual Syslog Server is an Windows application (installing a system service is not required).
Installer adds firewall exception.
Building from sources
To build Windows Syslog Server from sources use CodeGear RAD Studio C++Builder 2007
Main project file visualsyslog.cbproj
Required components: Indy.Sockets (VCL) version 10
To build the installer, use Inno Setup Compiler 5.5.1(a)
Installer project file visualsyslog.iss
Support
Your questions and suggestions please send to 
Future plans
- Message statistics
If you need these or other functions let me know.
Screenshots
Color highlighting setup
Message processing setup
Main setup
Files rotation setup
Smtp server setup to send e-mail messages
Visual Syslog Server for Windows is a free open source program to receive and view syslog messages.
Useful when setting up routers and systems based on Unix/Linux.
Visual Syslog Server for Windows has a live messages view: switches to a new received message. Helpful color highlighting.
Useful message filtering. Customizable notification and actions.
Sources hosted on the GitHub:
https://github.com/MaxBelkov/visualsyslog
Features
- Receive messages from various devices via UDP or TCP protocol (compliant to RFC 3164)
- Syslog messages are displayed in real-time
- Stores messages in files on disk
- Log file rotation by size or by date
- Filter displayed syslog messages based on facility, priority, host, source address, tag or message contents
- Customizable color highlighting with nice 3D design
- Generating notifications depending on the content of the received message: Show alarms windows, Play sound file, Send e-mail notifications via smtp server, Customizable notices format
- Performs actions depending on the content of the received message: run external program with params
- Saving message to the specified file, depending on the content of the received message
- Support for sending mail via SMTP server with authentication SSL / TLS (Support Gmail and iCloud mail smtp servers. You can use the push notifications on your mobile device for instant delivery of alarms.)
- Support Windows XP/Vista/7/8/8.1, Windows Server 2003/2008/2012
- Lightweight and very fast
- Run as a Windows application
- Minimize to system tray
- Easy to install: adjustment is not required
- Import historical syslog messages after the start of the program
- View and analyze syslog messages from the file
- Free open source software, licensed under the GPL V2
License
GNU General Public License version 2.0 (GPLv2)
As the largest commercial provider of hosting and support services for the open-source Moodle™ learning platform, we help organizations and institutions deliver great learning experiences without complexities
User Ratings
5.0
out of 5 stars
★★★★★
★★★★
★★★
★★
★
ease
1 of 5
2 of 5
3 of 5
4 of 5
5 of 5
5 / 5
features
1 of 5
2 of 5
3 of 5
4 of 5
5 of 5
4 / 5
design
1 of 5
2 of 5
3 of 5
4 of 5
5 of 5
5 / 5
support
1 of 5
2 of 5
3 of 5
4 of 5
5 of 5
4 / 5
User Reviews
- All
- ★★★★★
- ★★★★
- ★★★
- ★★
- ★
-
This is the perfect syslog server ever. It has most of the important functions and the interface is user-friendly. simple, easy, stable, and strong. I really appreciate for your effort. Thank you so much. I’m monitoring under 100 devices in my network, and it works awesome.
-
I am using this to monitor just north of 1,000 devices and catching 1 to 2 hundred log messages a minute just fine. I was a little worried this would not be able to handle it. Hopefully it is not dropping messages that I don’t know about, but so far I don’t see that with this product yet. Nice for real-time monitoring and being able to setup rules and filters are a HUGE plus with an environment this large. It’s easy to get overwhelmed without being able to filter the alerts.
-
I absolutely love this project! Awesome user interface, great filtering, good file saving options, nice 3D Grid to view syslogs. All around great Syslog Server!! Also love that it does not require a service, but i think in maybe a corporate or business setting it could use the option for a service. Thanks for this great application! Hope you continue to work on this and would love to contribute if i could. Thank you!
-
Works stable. Convenient filtering messages. Nice customizable interface.
Read more reviews >
Additional Project Details
Languages
English
Intended Audience
Telecommunications Industry, System Administrators, Developers, Testers, Security Professionals, Security
User Interface
Win32 (MS Windows)
Programming Language
C++
Join the Chocolatey Team on our regular monthly stream where we discuss all things Community, what we do, how you can get involved and answer your Chocolatey questions.
Join the Chocolatey Team on our regular monthly stream where we put a spotlight on the most recent Chocolatey product releases. You’ll have a chance to have your questions answered in a live Ask Me Anything format.
Livestream from
Thursday, 06 October 2022
We recently released our largest update to Chocolatey Central Management so far. Join Gary and Steph to find out more about Chocolatey Central Management and the new features and fixes we’ve added to this release.
Watch On-Demand
Webinar Replay from
Wednesday, 30 March 2022
At Chocolatey Software we strive for simple, and teaching others. Let us teach you just how simple it could be to keep your 3rd party applications updated across your devices, all with Intune!
Watch On-Demand
Livestream from
Thursday, 9 June 2022
Join James and Josh to show you how you can get the Chocolatey For Business recommended infrastructure and workflow, created, in Azure, in around 20 minutes.
Watch On-Demand
Livestream from
Thursday, 04 August 2022
Join Paul and Gary to hear more about the plans for the Chocolatey CLI in the not so distant future. We’ll talk about some cool new features, long term asks from Customers and Community and how you can get involved!
Watch On-Demand
Livestreams from
October 2022
For Hacktoberfest, Chocolatey ran a livestream every Tuesday! Re-watch Cory, James, Gary, and Rain as they share knowledge on how to contribute to open-source projects such as Chocolatey CLI.
Watch On-Demand
Livestream from
Thursday, 03 November 2022
Join Paul and Gary for this months Chocolatey product livestream where we look at the latest release of Chocolatey 1.2.0, Chocolatey Licensed Extension 5.0.0 and shine a spotlight on the new hook scripts functionality. This opens up so many possibilities for Chocolatey CLI users!
Watch On-Demand
Livestream from
Tuesday, 29 November 2022
Join Josh as he adds the ability to manage Chocolatey GUI config and features with the Chocolatey Ansible Collection.
Watch On-Demand
Webinar from
Tuesday, 13 December 2022
Join Gary, Paul, and Maurice as they introduce and demonstrate how to use Chocolatey! Questions will be answered live in an Ask Me Anything format.
Watch On-Demand
Это приложение Windows под названием Visual Syslog Server для Windows, последний выпуск которого можно загрузить как visualsyslog_setup.exe. Его можно запустить онлайн на бесплатном хостинг-провайдере OnWorks для рабочих станций.
Загрузите и запустите онлайн это приложение под названием Visual Syslog Server для Windows с OnWorks бесплатно.
Следуйте этим инструкциям, чтобы запустить это приложение:
— 1. Загрузил это приложение на свой компьютер.
— 2. Введите в нашем файловом менеджере https://www.onworks.net/myfiles.php?username=XXXXX с желаемым именем пользователя.
— 3. Загрузите это приложение в такой файловый менеджер.
— 4. Запустите любой онлайн-эмулятор OS OnWorks с этого сайта, но лучше онлайн-эмулятор Windows.
— 5. В только что запущенной ОС Windows OnWorks перейдите в наш файловый менеджер https://www.onworks.net/myfiles.php?username=XXXXX с желаемым именем пользователя.
— 6. Скачайте приложение и установите его.
— 7. Загрузите Wine из репозиториев программного обеспечения вашего дистрибутива Linux. После установки вы можете дважды щелкнуть приложение, чтобы запустить его с помощью Wine. Вы также можете попробовать PlayOnLinux, необычный интерфейс поверх Wine, который поможет вам установить популярные программы и игры для Windows.
Wine — это способ запустить программное обеспечение Windows в Linux, но без Windows. Wine — это уровень совместимости с Windows с открытым исходным кодом, который может запускать программы Windows непосредственно на любом рабочем столе Linux. По сути, Wine пытается заново реализовать Windows с нуля, чтобы можно было запускать все эти Windows-приложения, фактически не нуждаясь в Windows.
СКРИНШОТЫ
Визуальный системный журнал для Windows
ОПИСАНИЕ
Visual Syslog Server для Windows — это бесплатная программа с открытым исходным кодом для получения и просмотра сообщений системного журнала.
Полезно при настройке маршрутизаторов и систем на базе Unix/Linux.
Visual Syslog Server для Windows имеет представление живых сообщений: переключается на новое полученное сообщение. Полезное выделение цветом.
Полезная фильтрация сообщений. Настраиваемые уведомления и действия.
Исходники, размещенные на GitHub:
https://github.com/MaxBelkov/visualsyslog
Особенности
- Получение сообщений с различных устройств по протоколу UDP или TCP (в соответствии с RFC 3164)
- Сообщения системного журнала отображаются в режиме реального времени
- Сохраняет сообщения в файлах на диске
- Ротация файла журнала по размеру или по дате
- Фильтрация отображаемых сообщений системного журнала на основе объекта, приоритета, хоста, исходного адреса, тега или содержимого сообщения.
- Настраиваемая цветовая подсветка с красивым 3D-дизайном
- Генерация уведомлений в зависимости от содержания полученного сообщения: Показать окна сигналов тревоги, Воспроизвести звуковой файл, Отправить уведомление по электронной почте через smtp-сервер, Настраиваемый формат уведомлений
- Выполняет действия в зависимости от содержания полученного сообщения: запустить внешнюю программу с параметрами
- Сохранение сообщения в указанный файл в зависимости от содержания полученного сообщения
- Поддержка отправки почты через SMTP-сервер с аутентификацией SSL/TLS (Поддержка почтовых smtp-серверов Gmail и iCloud. Вы можете использовать push-уведомления на своем мобильном устройстве для мгновенной доставки тревог.)
- Поддержка Windows XP/Vista/7/8/8.1, Windows Server 2003/2008/2012
- Легкий и очень быстрый
- Запускать как приложение Windows
- Минимизировать в системный трей
- Простота установки: регулировка не требуется
- Импортировать исторические сообщения системного журнала после запуска программы
- Просмотр и анализ сообщений системного журнала из файла
- Бесплатное программное обеспечение с открытым исходным кодом под лицензией GPL V2.
Аудитория
Телекоммуникационная отрасль, системные администраторы, разработчики, тестировщики, специалисты по безопасности, безопасность
Интерфейс пользователя
Win32 (МС Windows)
Язык программирования
C + +
Это приложение также можно загрузить с https://sourceforge.net/projects/syslogserverwindows/. Он был размещен в OnWorks, чтобы его можно было легко запускать в Интернете с помощью одной из наших бесплатных операционных систем.
Syslog, and by extension syslog servers (click to learn ‘what is a syslog server?’), are programs and protocols that aggregate and transfer diagnostic and monitoring data.
Here is our list of the best free Syslog servers for windows:
- Kiwi Syslog Server – FREE VERSION This system collects, and files syslog messages and SNMP traps and also includes a message viewer. The tool runs on Windows and you can download it for free.
- ManageEngine EventLog Analyzer – FREE EDITION This is an excellent SIEM system in its paid edition but it also offers a Free edition that provides a log manager. Runs on Windows Server and Linux.
- Paessler PRTG – FREE VERSION A package of sensors for networks, servers, and applications and includes a Syslog receiver. The package is free for up to 100 sensors and it installs on Windows Server.
- Nagios Log Server Free This companion to the free network monitor, Nagios Core offers the collection and filing of log messages from Windows and Linux that includes Syslog. Runs on Windows and Linux.
- Splunk Light This free version of the Splunk system has been deprecated but you can get a 60-day free trial of Splunk Enterprise to process Syslog messages. Runs on Windows, Linux, and macOS.
- The Dude This free network monitoring tool receives, analyses, and stores Syslog messages as well as other data sources. Runs on Windows, macOS., and Linux.
- TFTPD32 This service is also available in 64-bit format and it provides a range of administration utilities, including the viewing and filing of Syslog messages. Runs on Windows.
- Syslog Server This straightforward Syslog manager is no longer available. It was designed for Windows Server.
- Icinga 2 A free system monitoring package that also provides a collector for Syslog messages that can be filtered by severity level. Runs on Linux.
- Visual Syslog Server This lightweight Syslog collector shows arriving messages in its screen and also files them. Runs on Windows.
- 3cDaemon This is a graphical interface tool for Windows that was written to follow the procedures y of the Unix command line syslogd.
- Syslog Server Datagram Collects Syslog messages and inserts them into a database for sorting and querying. Available for Windows.
Their power comes from the wide range of data that can be collected and, furthermore, the ways in which this data can be analyzed and levied for the sake of network maintenance, system monitoring, and dozens of other diagnostic and troubleshooting purposes!
Generally, the Syslog protocol is supported by a wide variety of devices and thus it’s easy for devices and applications to fire off log information to the Syslog server, which stores the information for further analysis.
Most notably, Syslog servers are often capable of triggering alerts or sending notifications.
This enables an admin in the field to receive time-critical information or to simply gets a heads up of something that may need attention soon.
Thanks to a built-in severity metric, it’s easier to know when something can wait and when it can’t.
SNMP ties heavily into Syslog server functionality and can be used in tandem to poll all the wonderfully wide variety of information that admins are used to snatching up via SNMP.
However, when taken a step further via Syslogging server software, they can take that SNMP data and do a lot more with it – graphical interfaces which aggregate and monitor SNMP data, for example, can massively speed up the assessment of almost any number of critical systems or failure points.
Using these same metrics many Syslog servers can also have automated scripts or events that will trigger and can potentially streamline the process of recovering from, or preventing, downtime or outages.
Some Syslog servers require client-based software to manage but many also offer web-based solutions, which can ease management both remotely or from different systems on a network environment.
Most servers are also quite good at data management and will handle some level of archival functionality for saving older logs or records that may not actively be needed at present.
Syslog does have a few drawbacks – it’s not particularly standardized, meaning that sloppy implementation can cause troubles for Syslog servers, and it also lacks any kind of authentication.
In a trusted network environment this isn’t really an issue, but especially nefarious malware or untrusted networks can sow seeds of trouble.
The Best FREE Syslog Server Software & Tools of 2023:
Below is a list of software that performs these functions and more, as well as the compatible operating systems and, quite importantly, whether it supports some form of alert (alarms, pop-ups, etc.) and/or notifications (email, txt, etc.)
1. Kiwi Syslog Server – FREE VERSION
Kiwi’s Syslog Server boasts ease of installation and setup on top of its other range of desirable features.
Reports can be generated both in easy-to-read HTML or in plain text if necessary for parsing with other software.
Log archival and storage are automatic and rigorous with a focus on compatibility in cases where even regulatory needs must be carefully met – even those as stringent as HIPAA.
Kiwi utilizes a web-based console for extremely ease of access and swift availability that requires no client installation or configuration.
Kiwi’s software even handles Syslog and SNMP, including from Linux and UNIX hosts, and performs real-time alerting and notification based on this data with a vast, and customizable, range of metrics that can be checked against.
Pros:
- Offers a freeware version for smaller networks
- Captures both syslog and SNMP traps, ensuring nothing is missed
- Interface is easy to use, and allows for quick filtering based on application, location, or custom grouping
- Color-coded warning level helps critical events pop out, and aids in prioritization
- Affordable for any size network
Cons:
- Built for sysadmins, not the best option for home networks or non-technical users
OS Compatibility and alert/notification ability: Win XP 32/64, Win 2003 32/64, Windows Vista 32/64, Win7 32/64, Windows 2008 R2 32/64, Windows 8, Windows Server 2012 & 2012 R2; has both alert and notification ability.
Download FREE!
Editors’ Choice!!!
2. ManageEngine EventLog Analyzer – FREE EDITION
The Free edition of ManageEngine EventLog Analyzer collects and stores log messages gathered from up to five sources. That isn’t very many devices. However, small businesses will be able to get by with this service.
The log collector gathers messages from Windows and Linux. It also collects messages from security systems, such as firewalls, intrusion detection systems, and antimalware products. You can get messages from database management systems and Web servers filed through this log manager as well.
The log server consolidates incoming messages into a common format and then files them. The system also includes a data viewer that gives you rudimentary analytical tools, such as sorting and filtering.
Pros:
- Collects log messages from equipment and operating systems
- Gathers security alerts from firewalls and intrusion detection systems
- Merges messages from different sources into a common format
- Files log messages and makes them available in a data viewer
Cons:
- The free edition only collects logs from five sources
Free version and Trial: ManageEngine offers the paid EventLog Analyzer on a 30-day free trial. This is a full SIEM system and it can collect messages from many more sources than the Free edition. The paid system also performs security scanning through collected log messages. If you decide not to buy at the end of the trial period, the package switches over to the Free edition.
Download: The EventLog Analyzer software installs on Windows Server or Linux – https://www.manageengine.com/products/eventlog/download.html
3. Paessler PRTG – FREE VERSION
Paessler PRTG has some Syslog ability then added via a sensor to the PRTG monitoring suite.
Primarily focuses on SNMP and Syslog protocol data and has a good amount of analysis ability due to the built-in capability PRTG already has for general monitoring and management.
OS Compatibility and alert/notification ability: Any Windows 64-bit environment with Windows Server 2012 R2 specifically recommended; good notification and alerts, but all varies a bit as sensor must be added and configured by hand
Pros:
- Uses a combination of packet sniffing, WMI, and SNMP to report network performance as well as discover new devices
- Autodiscovery reflects the latest inventory changes almost instantaneously
- Drag and drop editor makes it easy to build custom views and reports
- Supports a wide range of alert mediums such as SMS, email, and third-party integration
- Supports a freeware version
Cons:
- Is a very comprehensive platform with many features and moving parts that require time to learn
Free version & Trial: You can use up to 100 sensors of PRTG indefinitely for free. If you have larger requirements for your network, you can check out the 30-day free trial.
Download: https://www.paessler.com/free_syslog_server
4. Nagios Log Server Free
Nagios Log Server is a paid log management system that collects a range of log message types, including Syslog. The tool has a free version, called the Open Source Edition. The catch is that the operations of the free system allow limited to processing 500 MB of data per day. So, this is only a viable free service for small businesses.
This log server will also process Windows Events and log messages from network devices and software packages. You host this system on your own server running Linux or Windows over VMWare, so the data retention period is up to you. The tool includes a data viewer and you can also construct charts, graphs, and alerts based on log contents or server throughput data.
Pros:
- Open-source free version available
- Supports built-in event visualization
- Offers multi-platform log collection on Linux and Windows systems
- Offers a live view into event collection as it happens
- Dashboard is highly customizable, good option for teams
Cons:
- Bug fixes in open-source environments are left to the community
Download: https://www.nagios.com/downloads/nagios-log-server/
5. Splunk Light
Not an ideal solution as even the Splunk forum will suggest using several Splunk servers for a proper setup, but still doable! Utilizing Splunk to index and manage log files is more strongly recommended, as syslog data will be lost with each Splunk restart by default.
None the less, it does offer syslog functionality and, with a little work getting several Splunks working together, can be a solid solution.
OS Compatibility and alert/notification ability: Splunk runs on Windows 64-bit versions as well as Linux and Mac OSX, syslog functionality varies; no real alerting or notification functionality for syslog
Pros:
- Uses excellent visuals to display collected data and insights
- Supports a multitude of environments for data collection
- Uses machine learning to identify new data sources and monitor behavior
- Caters to enterprises with excellent support and a wide range of integrations
Cons:
- Many features and services cater to large enterprise networks
Download: https://www.splunk.com/en_us/download/splunk-light.html
6. The Dude
The Dude, despite it’s odd name, is an interesting and free option for general network management – it comes with a built-in syslog server which can be enabled with ease as well as provides functionality for remote logging via RouterOS.
Log events can be filtered, sorted to different logs, or discarded based on customizable thresholds.
OS Compatibility and alert/notification ability: Most versions of Windows, recommended Windows 2000 or newer, also runs on Linux or MacOS using Wine/Darwine; email based notification with some on-screen alert or log-based alert options, too
Pros:
- Installs on Windows, Linux, and Mac, making this one of the most flexible options for syslog servers
- Can ingest SNMP alerts, ICMP requests, and DNS queries, giving you a wide variety for log collection options
- Utilizes autodiscovery for network mapping and device identification
- Supports log forwarding to other servers or applications
Cons:
- Not as lightweight as some other simple syslog servers
- Interface can we challenging to learn
Download: http://www.mikrotik.com/download
7. TFTPD32
TFTPD32 has a strong root in TFTP, as the name implies, but it also serves as a capable Syslog server to boot in addition to DHCP, DNS, SNTP, as well!
It’s breadth of coverage does mean less features, and overall the software is pretty cut and dry – which isn’t always a bad thing! Handles all basic Syslog message gathering and storage
OS Compatibility and alert/notification ability: Runs as Windows service, compatible with most newer Windows versions after 2000; email based notifications
Pros:
- Open-source tool, completely transparent
- Has a simple interface that gets the job done and is easy to navigate
- Offers a host of configurable options
- Can track file transfers via log, or visually in real-time as they come in
Cons:
- Has a higher learning curve than other options
Download: http://tftpd32.jounin.net/tftpd32_download.html
8. Syslog Server (Abandoned)
A fairly simple and barebones Syslog server that also doubles as an analyzer. It can be adjusted to only log and monitor events at certain threshold values and also can trigger email-based notifications, as well as sort the way in which events are displayed.
OS Compatibility and alert/notification ability: Service on Windows server prior to 2008, application functionality on most Windows versions; can trigger e-mail notifications based on thresholds
Pros:
- Lightweight tool – uses little system resources
- Organizes and monitors Windows events
- Supports email alert notifications
Cons:
- Fairly barebones – not the best option for power users
Download: https://sourceforge.net/projects/syslog-server/
9. Icinga 2
Icinga is a powerful open-source monitoring suite, and though its focus is on a wide breadth of monitoring, it does offer a plug-in specifically for Syslog monitoring and management.
OS Compatibility and alert/notification ability: Most Windows both consumer and server on application level; some alerting functionality based on plug-in settings and version
Pros:
- Can be configured via GUI or DSL, making it a good choice for admins who enjoy CLI tools
- Supports built-in visual reporting
- Modules allow for different functionality, keeping the base installation sleek and lightweight
Cons:
- Designed for more technical users
- Better suited for smaller environments
Download: https://www.icinga.org
10. Visual Syslog Server
Visual Syslog Server is a very straightforward and light-weight Syslog option that focuses on a real-time approach.
It does have some ability to handle and rotate logs automatically, to avoid bloat, and can also trigger scripts or programs based on thresholds that can be set.
OS Compatibility and alert/notification ability:
- Windows XP,
- Vista,
- 7,
- 8,
- 8.1,
- as well as Windows Server 2003, 2008, 2012;
It can handle notifications via email and also some alerting and automated triggering of actions!
Pros:
- Simple interface, utilizes color to aid in log prioritization
- Powerful filtering options work quickly and are easy to learn
- More user friendly than other tools
Cons:
- Better suited for smaller networks, features don’t work as well at scale
Download: http://maxbelkov.github.io/visualsyslog/
11. 3cDaemon
Based on the BSD-unix style functionality of syslogd, this particular offering is going to appeal to only a select crowd! None the less, it can handle logging based on priority, filter/restriction messages by IP, has real-time viewing of the log, and even can dump log information to plain ASCII.
OS Compatibility and alert/notification ability: Application level server run on most older Windows, newer OS versions may be iffy at best as the software is quite old; no real alerting or notification functionality
OS Compatibility and alert/notification ability:
Windows 32 Bit
Pros:
- Simple lightweight tool
- Offers various data export settings
- Robust filtering features
Cons:
- The BSD style of the tool can be off-putting to Windows users
- No alerting functionality
Download: http://3cdaemon.updatestar.com/en
12. Syslog Server Datagram
This software focuses on an enterprise level of functionality and is geared towards larger environments – it can gather and store a wide range of Syslog information and store it on a central database with a wide range of filters and alarms available.
OS Compatibility and alert/notification ability:
Windows 2000 and forwards; has alarm functionality but not much for notifications
Pros:
- Provides enterprise level logging through a lightweight platform
- Simple interface is easy to use
- Has a large number of sorting and filtering features
Cons:
- No visual reporting – heavily text based
- Limited alert options
Download: http://www.syslogserver.com/download.html
Conclusion
Syslog tracking via a powerful Syslog server can save any network administrator an obscene amount of time and effort.
Every bit of data, whether SNMP or Syslog, that can be requested, aggregated, and analyzed is another potential piece of a puzzle that can trigger alerts or notifications and quickly bring human attention to the problem as soon as possible, or even fire off predefined scripts or programs to alleviate, or at least slow down, oncoming issues.
The flexibility of these programs are a superb way for admins to leverage monitoring to their advantage with the goal of maximum uptime and stability.
Much of this information can be seen on any one system or device, but even a small network with a few dozen devices would be totally unreasonable to monitor one by one – having it centralized, automated, and closely monitored is invaluable!
Related Post: Windows 7 FTP Server Installation Guide
- Сеть и администрирование
- Free
- Open Source
- Windows
- Network Monitoring
Наиболее популярные альтернативы и аналоги Visual Syslog Server для Windows.
Introduction
The syslog (system logging) protocol is used for monitoring network devices and sending log messages to a logging server (a syslog server).
The syslog server and syslog protocol work together to facilitate log tracking and management.
In this article, you will learn what a syslog server is, what it is used for, and see the best syslog servers available for Linux and Windows.
What Is a Syslog Server?
A syslog server collects syslog messages from all devices in a single location, whether it is a bare metal server, a virtual machine, or a software service. The syslog server usually consists of a syslog listener, which receives and interprets the incoming data, and a database for storing the data.
The server collects, filters, and displays the collected messages from all devices and operating systems. A syslog server can usually store the logs for a long time.
Advanced syslog servers provide automated notifications and tailored responses to detected issues — i.e., to run a script, filter and forward a message, create and deliver a report, etc.
With all the benefits and features of a syslog server, it is easy to optimize device performance and health after analyzing server data.
What Is a Syslog Server Used For?
A syslog server’s primary purpose is to collect log messages from the connected network devices and store them in a centralized location for monitoring purposes. The server keeps the logs in a consistent format, allowing users to spot performance irregularities easily.
Use a syslog server to improve network monitoring and management by inspecting network specifics and parameters. Automate actions by setting up automatic alerts about a variation in a device’s data log. Some syslog servers come with a message severity level indicator.
The benefits of using a syslog server and logging data are:
- Reduced number of alerts.
- Reduced downtime.
- Fewer business interruptions.
- Preventive troubleshooting.
Finally, syslog servers can store event logs for a long time, enabling access to historical events. Various syslog servers rotate logs and create new files periodically, thus keeping the data organized.
This section lists the most popular and feature-rich Linux and Windows syslog servers. For a comparison of supported platforms and free trial availability, refer to the table below:
| Syslog Server | Supported Platforms | Free Trial |
|---|---|---|
| Kiwi | Unix, Linux, Windows | 14 days |
| PRTG | Windows | 30 days |
| Syslog Watcher | Unix, Linux, Windows | Per request |
| The Dude | Linux, macOS, Windows | / |
| Visual Syslog Server | Unix, Linux | / |
| Datagram | Windows | Unlimited trial version |
| ManageEngine EventLog Analyzer | Linux, Windows | / |
| Icinga | Unix, Linux | / |
| GrayLog | Linux | / |
| WinSyslog | Windows | / |
| Nagios | Linux, Windows | 30 days |
| Splunkbase | Unix, Linux, Windows | 14 days |
| Progress WhatsUp Gold | Windows | 14 days |
| Logstash | Unix, Linux, Windows | 14 days |
| Loggly | Cloud-based | 30 days |
| Site24x7 | Cloud-based | 30 days |
Free Syslog Servers
The following section lists the best free syslog servers:
1. Kiwi Syslog Server
The Kiwi syslog server was created by SolarWinds. It is a comprehensive logging utility that collects syslog events and messages on Unix, Linux, and Windows and generates reports in plain text or HTML.
Kiwi’s GUI allows users to easily and efficiently manage logs in a single place. The tool can create network traffic graphics and, optionally, send daily summary emails.
The free edition collects syslog messages from up to five devices and provides an option to set up alerts for various events, including heavy traffic, login attempts, hardware failures, etc. Additionally, Kiwi offers the possibility of archiving syslog messages or forwarding them to a database. The free version comes with a trial of full functionalities lasting 14 days.
The full version costs $329 and offers automation, allowing you to set up actions that are automatically triggered by specific events and a web-based interface for remote management.
2. PRTG Syslog Server
The PRTG syslog server is part of the PRTG Network Monitor application, and it is completely free for up to 100 sensors. The free trial allows users to use more sensors for 30 days but later reverts to the free version. The Syslog Receiver sensor for monitoring and analyzing network traffic doesn’t require additional software installations.
PRTG can receive and process up to 10,000 syslog messages per second from network devices and Windows environments. The number depends on the processing power, storage, and overall system configuration.
PRTG offers an intuitive web interface for viewing, analyzing, and filtering syslog messages by type, severity, etc. It also provides message categorization and further filtering to ensure only relevant messages are displayed.
The server offers automation by sending alerts triggered by errors, warnings, or a high number of messages.
3. Syslog Watcher
The SNMPSoft Syslog Watcher is a dedicated syslog server compatible with various devices and software that support syslog sending. The tool collects system log events from Unix, Windows or Linux servers.
The free version allows syslog message collection from five sources, while the professional version supports an unlimited number of sources. Depending on the configuration, Syslog Watcher can handle up to 5,000 syslog messages per second.
Syslog Watcher can collect messages over UDP and TCP and supports IPv4 and IPv6 networks. The utility also enables automation by sending email alerts for specific errors, events, or messages.
Message filtering, storing, and customization depend on filters, the message severity level, and the rules set by the user. Syslog Watcher also offers exporting messages to a database, manually or automatically.
4. The Dude
The Dude is a network management application developed by MicroTik, with a free built-in syslog server. The application offers general network management, while the syslog server captures syslog messages from your devices.
The Dude supports remote logging via RouterOS. It is compatible with Windows-based systems, while on Linux or macOS, it runs using Wine/Darwine.
The server automates maintenance by allowing users to create alerts for specific syslog events or messages and filters.
It includes an auto-discovery feature, automatically mapping nearby devices on the network, which facilitates network building.
5. Visual Syslog Server
Visual Syslog Server is a free and lightweight Windows-based syslog server that monitors incoming data in real-time. It accepts messages via UDP and TCP and stores them on a disk. Previous syslog messages remain on the disk for future analysis as long as the user specifies.
Message filters include filtering based on the host, source address, priority, facility, or message content. Filtering makes it easy to find an issue when dealing with a large data volume.
Users can also configure thresholds for triggering the execution of scripts, programs, or email notifications. Thus, the tool automates problem-solving and reduces response time for pressing issues.
6. Datagram
The Datagram Syslog Server is part of the Datagram SyslogServer Suite. Its Datagram SyslogAgent is installed as a service on Windows clients and servers, supporting Windows 2000 or newer systems.
The program provides enterprise-level functionality, capable of log collection, message filtering, alerts, database storage, and log viewing.
The GUI is intuitive and offers a live network view. The filters include the hostname, process, facility, issue severity, message, or even custom SQL queries.
The trial version is free, supports eight logging IP addresses, but supports the Microsoft Access database only. Entries cannot be backed up or deleted, and there are no email notifications. Users can create ten filters and set up to ten alarms.
On the other hand, the enterprise version costs $200 for 50 IP addresses, $500 for 500, and $900 for 5000 IP addresses. The enterprise version allows users to back up or delete entries, supports MSSQL databases, and sets no limit on creating filters or alarms. It also supports email notifications.
7. ManageEngine EventLog Analyzer
The ManageEngine EventLog Analyzer is a tool that allows the monitoring of up to five devices for free. It is compatible with Windows and Linux, while monitoring works for various devices running any operating system.
The EventLog Analyzer provides a GUI with a real-time log view and comparison, allowing for quick detection of suspicious messages and possible security threats. The functional dashboard enables users to create custom rules for alerts and notifications about security issues. There are also predefined rules for security event logs.
The auto-discovery feature finds devices on the network and facilitates log collection. Each message is labeled, making it clear which device it came from.
Compression and encryption of archived logs restrict data access to users without administrator privileges.
8. Icinga
Icinga is an open-source tool that monitors and reports on device health. This syslog server accepts various modifications that enable it to fit any organization’s network monitoring needs.
The syslog tool collects, stores, and organizes data in a time-series database, showing earlier and current syslog data. It instantly notifies the user about any suspicious data, which helps prevent downtime and allows monitoring based on events.
Icinga’s web interface provides charts and graphs depicting device health and optimizing troubleshooting and debugging. Its integration with other devices facilitates real-time data collection, storage, and visualization of log metrics.
9. GrayLog
GrayLog is an open-source syslog server for Linux. The tool is free for 5 GB of data per day, making it an excellent choice for small networks, but it isn’t suitable for large organizations.
The server includes a query and search function with lots of filters that enable users to find a specific record quickly. The program interface consists of a fully customizable web GUI with graphs, charts, and changeable basic components for creating a custom day-to-day monitoring environment.
The server has prominent security features with automatic email notifications about failed logins, device faults, or security threats. With in-built automatic IP blocking, GrayLog can prevent an attack as soon as it recognizes one.
The app also offers fault tolerance features, audit logs, and role-based access control, further increasing security.
10. Windows Syslog Server
WinSyslog is a syslog server designed for Microsoft Windows. It supports syslog monitoring via UDP or TCP and it is free for displaying 60 messages at a time, with free troubleshooting support. Paid versions unlock additional features, provide greater security and unlimited device support.
WinSyslog is reliable, highly scalable, and collects syslog messages from any device compatible with the syslog protocol. It maintains device health using the Active Status Monitor feature, which pings the selected device and warns the admin if there is no response.
The server creates a daily log containing the received syslog messages, with customizable size and storage options. Store the file in a database or write it to the event log of Windows NT, 2000, or XP systems.
The program also features an automatic email notification in case of a security issue.
Paid Syslog Servers
The following is a list of the best paid syslog servers:
1. Nagios Log Server
Nagios is a scalable syslog server that helps monitor systems, networks, and infrastructure. While it does offer a free plan, it is only 500 MB/day, making it unsuitable for medium and large businesses.
Other pricing plans are:
- Single Instance. For $1,995, it covers only one installation, which excludes failover. With this purchase, the data plan is unlimited.
- Two Instances. Costing $4,995, it covers two separate installations, which allow for redundant data with automatic failover.
- Four Instances. Costing $6,995, it allows four separate installations, further increasing redundancy and speeds.
- Ten Instances. At $14,995, it allows for ten installations with maximum redundancy and query speeds.
The server can receive logs from a wide variety of operating systems and devices, including Windows, Linux, mail servers, Web and application servers, SQL servers, etc. It is customizable, with configurable thresholds, email notifications, script execution, or alert forwarding.
The dashboard provides an overview of all logs over time, with customizable filters that include the timestamp, ID, host, message, severity, program, etc. The tool generates reports which are also customizable and that automatically update in real-time.
2. Splunkbase
Splunk is a syslog server used for monitoring, querying, analyzing, and visualizing log data in real-time. It is a paid tool with a 60-day free trial that includes syslog features. The server is compatible with Linux and macOS.
Splunk costs $1,150 per GB of data for a yearly 15 GB license, including maintenance.
Splunk features an intuitive and user-friendly UI with real-time statistics and a customizable dashboard.
It includes powerful search functionalities and filters that narrow every search down to the messages the user needs, such as error messages or device-specific messages. Splunk allows users to perform Boolean, quoted string, and wildcard searches in real-time, time range, or transaction level.
3. Progress WhatsUp Gold Log Management
Progress WhatsUp Gold (formerly IPSwitch) is a paid syslog server that comes with a free 14-day trial. The syslog management tool is an add-on to the WhatsUp Gold monitoring tool for Windows Server, and it also receives Windows Events messages.
The price plans differ for a subscription and a perpetual license. For example, the pricing plans for a 1-year license include:
- 5 Servers — $1,325
- 10 Servers — $2,300
- 25 Servers — $5,250
The logging tool receives the log and Windows event messages and files them together. If there are sudden out-of-band increases or decreases, the tool creates an alert and notifies the user.
The customizable drag & drop dashboard shows messages in real-time as they arrive. Color-coded icons and graphs improve the visibility of each message’s severity, allowing the team to react immediately.
WhatsUp’s interactive interface shows each device’s availability and performance, both on-premise and in the cloud.
4. Logstash
Logstash is part of a software suite called ELK stack that collects log messages. One part of the stack, Elasticsearch, sorts and filters the messages for analysis, while Kibana processes and displays the data. All technologies in the ELK stack are Linux-based, but work on macOS as well.
Logstash comes in four pricing plans:
- Standard. For $16 per month.
- Gold. Costs $19 per month.
- Platinum. Costs $22 per month.
- Enterprise. Contact the sales team for a quote.
Logstash listens on the network for messages coming from a wide variety of devices, but also supports collecting data from cloud services and applications. It collects logs via TCP or UDP, and it also supports TLS-encrypted messages.
Logstash can read messages from a file or database, get messages from mail servers, IRC or RSS feeds, and pick up SNMP messages. The filters allow users to find specific messages and quickly resolve any issues.
The front-end part of the ELK stack, Kibana, works well for any syslog server.
5. Loggly
Loggly is a cloud-based syslog consolidator and analyzer. It doesn’t require software installations on-premises but requires setting up automated file transfer procedures that upload the logs to the Loggly server.
The utility comes in four pricing plans:
- Lite. Free, includes 200 MB/day, and retains data for seven days.
- Standard. Starting at $79/month, it limits data to 1 GB/day and retains data for 15 days.
- Pro. Starting at $159/month, data volume is up to 100GB/day, and retains data for up to 30 days.
- Enterprise. With a starting price of $279/month, it includes a custom data volume and retains the log data for up to 90 days.
Loggly standardizes and stores syslog messages from many sources, allowing users to access the data uniformly. Once the data is stored, it is accessible via the log analysis tools in the online service.
Loggly includes storage space with the software purchase, but since it stores data remotely and offsite, it is good to back up the log files on another site to improve system security. Data retention depends on the purchased package.
6. Site24x7 Server Monitoring
Site24x7 is a cloud-based monitoring and management software suite that includes the Log Manager. The Site 24×7 Infrastructure utilities offer a 30-day free trial. A monthly subscription comes with a 500 MB log processing allowance costing $9 with the following possible upgrades:
- 10 GB. Costs $10 per month.
- 100 GB. Costs $95 per month.
- 1 TB. Costs $900 per month.
Although the system is cloud-based, a Site24x7 agent must be installed on the monitored system for the Log Manager to work. The agent is compatible with Linux and Windows server.
When receiving syslog messages, the server standardizes them and files the messages in the same format. Message standardization allows users to analyze messages from different sources together.
The dashboard includes many data analysis options within the log file viewer tool, including log querying, sorting, filtering, and grouping messages.
How to Choose a Syslog Server?
There are several factors to consider when choosing a syslog server:
- Business Size. A paid syslog server is probably a better choice for a large enterprise due to the data volume and device number restrictions of free servers. On the other hand, a free syslog tool can provide the necessary functionalities for small businesses with low device numbers and a small data volume.
- Support. If your organization doesn’t have skilled IT staff or if you need help setting up the software, a paid tool usually includes support and troubleshooting assistance. Some free utilities also have basic documentation, but don’t offer round-the-clock support and troubleshooting.
- Storage. A better choice for businesses with their own storage capacities are syslog servers sold as a software suite, which are installed on-premises. An on-premises option improves security and lowers the chance of a data breach. On the other hand, some syslog tools are sold as a cloud-based syslog service, which is a good choice if you don’t have your own storage.
Conclusion
This article listed the 16 best syslog servers, their benefits, features, capabilities, and pricing. You should now be able to decide which syslog server is the most suitable for your organization.