The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap) The App includes Dashboards which will show you: - The Top Talker IP's, MAC's, Protocols, Ports, VLANs, Conversations - Detailed overview about IP Conversations, Packet Loss, TCP Error's, Round Trip Time - Conversation Sankey Diagram (by Packets, by Bytes, by Destination Port) - Microburst Dashboard (Bit timechart) - DNS Overview (Queries over time, Results over time, DNS Response Time) - NFS Overview (NFS Operations, NFS Response time, NFS Errors) - HTTP Overview (HTTP Methods, HTTP Status, HTTP Response Time) - SMB / SMB2 Overview (SMB response time, SMB Operations) - Keep Alive Communication Dashboards - Hop Calculator between two IP's In addition a 'Problem Detection' Dashboard has been implemented to help during the Wireshark analysis. ROADMAP - Support for more protocols and more use cases - Dashboards will change to highlight the most important use cases for troubleshooting. GETTING STARTED https://schwartzdaniel.com/pcap-analyzer-for-splunk-getting-started/