Further, take a look at the third column in the picture “Traffic Type” (Apps, Hosts, Traffic Type columns). This is pretty much useless other than letting me know what protocols were used at some point.
I should be able to click on each of these in the Traffic Type column and should see exactly what hosts were connected to with this protocol and what apps were used when using this protocol.
We really need granular level search, sorting and log manipulation.
If I search or click on an app, I should see all the hosts associated to it, & traffic types used.
If I search or click on a host, I should see the app that was used with the host and the traffic types.
If I search or click on a traffic type, I should see the apps and hosts used with that traffic type…
All should be manipulable, all able to copy. Because many are not.
As far as the three columns themselves. At minimum I should be able to click at the top of the column to organize them pretty much like Excel. Rearrange them by alphabetical A-Z or Z-A, time, traffic size etc.