Splunk DLT

Blockchain solutions have generated new and complex infrastructure, application and security requirements. Splunk is the only platform providing visibility across every component of the stack.

Splunk is helping to accelerate the adoption of Distributed Ledger Technologies (DLT) by helping organizations avoid downtime, secure their infrastructure, and make the data generated by blockchains accessible to anyone.

Platforms

Splunk can theoretically ingest data from any data source, in other words, any blockchain. Splunks line of DLT products is meant to make it easier on developers and analysts to use Splunk for blockchain platforms, cutting down on per blockchain platform customization.

Splunk offers both blockchain connectors which ingest data directly from the blockchain, and Splunk apps that make sense of that data to give you observability across IT monitoring, infrastructure security, and ledger analytics.

To get started with Splunk’s DLT products, you will need a running Splunk instance. Then, we suggest installing the connector first, followed by its related application.

Splunk provides connectors and apps for some of the most popular DLT platforms including; Hyperledger Fabric, R3 Corda, Ethereum and its private relatives, Quorum, and Besu.

Again, any blockchain data can be ingested in Splunk, out of the box solutions for additional public and private chains are in the works, feel free to ask questions and receive support through blockchain@splunk.com.

Ethereum

Splunk Connect for Ethereum allows for unified monitoring, troubleshooting, investigation, and action through node logs and metrics no matter where or how the node is hosted (managed vs. unmanaged, on-prem vs cloud).

The connector features decoding of function calls and event logs in Ethereum transactions based on Solidity ABI information. In addition to the binary data of transactions, the following information is extracted:

Function or event name
Parameter values and data types
Parameter names
Contract name

This information can be used to easily search for semantic aspects of smart contracts and it enables powerful and efficient aggregations and analytics.

Splunk App for Quorum and Splunk Demo for Besu are leveraging Splunk Connect for Ethereum and extends analyses to use cases pertinent to either platform.

R3 Corda

Splunk Connect for Corda allows for observability for the operator and notary. It combines IT, business and security data into one place to manage a network or CDBC.

Gain insight into flows and correlate node application logs and JMX metrics from Corda to monitor inflight flows, errors and transaction durations.

With CorDapp performance and tracing, monitor both infrastructure and CorDapps in one platform using metrics and traces from the OpenTelemetry collector.

Hyperledger Fabric

Splunk Connect for Hyperledger Fabric sends blocks and transactions from a Hyperledger Fabric distributed ledger to Splunk for analytics.

Splunk App for Hyperledger Fabric, allows users to gain observability into the Consortium in a unified control center for monitoring, troubleshooting, and investigation. It’s also a tool to take action on Hyperledger Fabric components across organizations and multi-cloud environments.

The app is designed to enable the ramping up from proof of concept to production by understanding the performance of your development environment and by monitoring configuration changes.