Carbon Black OS X Sensor DNS information for netconn events is inconsistent
Carbon Black OS X Sensor versions earlier than v5.1.
In some cases for an OS X Sensor, the netconn events report only an IP address and do not include a domain name. This is inconsistent behavior, as DNS information should be captured and present for netconn events.
From the Process Analysis page, focusing on netconn events, only an IP address is reported such as: