Concepts
Navigation Notice: When the APM Integrated Experience is enabled, Loggly shares a common navigation and enhanced feature set with other integrated experience products. How you navigate Loggly and access its features may vary from these instructions.
Loggly users should familiarize themselves with the concepts below.
Fields
Fields play an important role within Loggly. Every event received in Loggly undergoes a full-text index. Where possible Loggly also parses out as many field-value pairs. After a field name exists, Loggly also facets the values (where appropriate). This enhances data analysis. When you search on a specific field, search results become more accurate. More accurate results allow you to reduce the time needed to identify root cause.
Syslog
There are a number of ways to get logs into Loggly. The most common method is by using syslog. Syslog agents run on all Linux systems by default and can be installed on Windows systems. Syslog collects the log data and forwards it to a location that was previously identified in the configuration. Read more on syslog and the basics of sending logs.
Tags
Tags, which Loggly applies as meta data added to events, can be included with any event Loggly sends. Tags can then be used to form Source Groups, which can help you segment data and narrow search results. For more information, see Tags.