I am very new to splunk, We are trying to monitor our hyperledger fabric network with the Splunk App for fabric in the Splunk enterprise. We have a hyperledger fabric network with version 2.2.2.
I installed the app and followed the instructions specified in https://splunkbase.splunk.com/app/4605/#/details.
I also setup the fabric-logger and I could see the fabric-logger is running and it is able to fetch the blocks and event details from the peer from which it is connected to.
In the Splunk, I see this error: Search peer indexer-0 has the following message: Received event for unconfigured/disabled/deleted index=hyperledger_logs with source="source::fabriclogger" host="host::fabric-logger-6b79d77b99-bncwj" sourcetype="sourcetype::fabric_logger:endorser_transaction". So far received events from 1 missing index(es).
I have the HEC enabled and I also have the index hyperledger_logs.
I donĀ“t see any errors in the logs of fabric-logger or in the indexer.
But I am not seeing any data in Splunk.
Please find the screenshot below
