Thanks for the info, Brian.
I have another question...
For eg:, if an application (executable file) triggers a traffic from internal host to an external (unknown) organization or vice versa, will the packet log show enough of details (like IP address, MAC address, application name, ports & protocols used, etc)?
Cheers!!!