No more typing reviews! Try our Samantha, our new voice AI agent.

Packetbeat vs Splunk Observability Cloud comparison

 

Comparison Buyer's Guide

Executive SummaryUpdated on Mar 29, 2026

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Packetbeat
Ranking in Network Monitoring Software
62nd
Average Rating
8.0
Reviews Sentiment
2.5
Number of Reviews
2
Ranking in other categories
No ranking in other categories
Splunk Observability Cloud
Ranking in Network Monitoring Software
6th
Average Rating
8.2
Reviews Sentiment
6.8
Number of Reviews
88
Ranking in other categories
Application Performance Monitoring (APM) and Observability (5th), IT Infrastructure Monitoring (5th), Cloud Monitoring Software (4th), Container Management (5th), Digital Experience Monitoring (DEM) (2nd)
 

Mindshare comparison

As of July 2026, in the Network Monitoring Software category, the mindshare of Packetbeat is 0.3%, up from 0.1% compared to the previous year. The mindshare of Splunk Observability Cloud is 1.3%, up from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Network Monitoring Software Mindshare Distribution
ProductMindshare (%)
Splunk Observability Cloud1.3%
Packetbeat0.3%
Other98.4%
Network Monitoring Software
 

Featured Reviews

Mohammed-Abdelalim - PeerSpot reviewer
Assistant Vice President at QualityKiosk Technologies Pvt. Ltd.
Network analytics have delivered lightweight, integrated visibility for search, observability, and security
Packetbeat analyzes specific protocols and is not suitable for full capture of all network traffic and network flows. I recall that Packetbeat can cover a limited number of protocols including ICMP, but not as deeply as other solutions. It covers NetFlows and these types of flows, but not at the level of a deep packet capture that you can find in the market where it taps every single packet in the network. Packetbeat is more about bringing statistics about the packets, but it doesn't capture these packets. The development intention of Packetbeat appears to be to provide a window for application monitoring and performance analytics, and for that purpose, it is doing sufficiently well. However, if the vendor has another goal to build a similar network monitoring solution that exists in the market, which is outside of Elastic's business nature, Packetbeat is a sensor that needs to be improved to the level of deep packet capture where it loses no packets in the network. That improvement would take Elastic to another level.
PK
Project Manager at AGRICULTURE SKILL COUNCIL OF INDIA (ASCI)
Unified observability has improved real-time governance and now drives data-led decisions
Log Observer Connect is embedded here, but we are facing some delays in centralized log collection and analysis, which can be further fastened. We are collecting all the data metrics and decision-making insights, but all these data-driven decisions coming from different applications are not connected somewhere. A consolidated form or correlation of these insights is not happening between each other due to which we feel we are missing something significant. Some generalized feedback includes that predictive alerts or alarms which can be integrated with AI-driven alarms and alerting features should be established so that there is AI-driven intelligence and anomaly detection happening with a complete systematic process in service delivery. Application dependencies are huge, and business and operational dashboards should be improved. Right now there are very interactive custom dashboards, and every now and then, the personalization of enhancements keeps happening. KPI monitoring, executive reporting, and analytics have definitely been introduced to a great extent. There are few things in cloud-native monitoring, such as integration with AWS and Azure, where we sometimes do face lags. Those things can definitely be improved upon. I have used Datadog and Dynatrace before using Splunk Observability Cloud. Datadog was definitely recommended by most of our peers because of its very strong comprehensive observability and very strong and unique dashboard systems. Dynatrace was also very good because they have offered a lot of AI-driven analysis methods and processes, which was helping our organization a lot. Since our organization has a very strong IT ecosystem for agriculture, very different kinds of customized things are required.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Elastic's scalability, in terms of cluster robustness, is definitely the most valuable feature."
"The beauty of Packetbeat is that it is easy, free, and lightweight, while other solutions are expensive and will accumulate a huge amount of data."
"I manage six tools, but Splunk Observability Cloud is one of my favorites, and I aspire to build my career specializing in it because it has great features, more attention in the market, and is a relatively new tool with promising growth."
"The volume it handles is very good, including the number of metrics, the volume number of traces, and more."
"What I appreciate most about Splunk Observability Cloud is the correlation feature, specifically the ease of correlating logs and issues to those traces to see where within the path of the business function is failing."
"The feature of Splunk Observability Cloud that I prefer most is the easy deployment on the cloud."
"The Add data feature lets you gather any type of log and easily analyze it, which is easier than using other solutions like ArcSight or Elasticsearch, and we can use these logs with our data processes to explain our situation."
"We are happy with what we have, how it is deployed and how it serves the need we have deployed it to fill."
"The best features in Splunk Observability Cloud are the metrics; I can see any logs or anything related to the server or services we want to monitor, and the metrics are a good function."
"Once configured correctly, the analysis reporting the Splunk APM provides is better than that of the other APM tools."
 

Cons

"Packetbeat analyzes specific protocols and is not suitable for full capture of all network traffic and network flows."
"The scalability of the agent itself could be improved."
"I need a tool that can deal with all the security solutions that will find security monitoring compliance requirements, so I'll stick to BigFix over Splunk because I'm not that big a fan of Splunk, to be honest."
"We have both on-prem and cloud, and the challenge is getting all our log data aggregated or streams aggregated so that it is real-time. We do a pretty good job of that, but our organization is not using it as a security platform when it can do a great job of that."
"The pricing would be one area for improvement."
"Once you see the issues related to the scalability part, you need to understand that it is a warning triangle. After seeing the warning triangle, you need to realize that you cannot trust any of the numbers you see in the chart because it is not a complete, full data set."
"What I don't like is that you are not sure all the data is recorded."
"The feedback is that Splunk Observability Cloud is forcing me to modify my logs that I am ingesting in Splunk Observability Cloud in a specific format."
"There are several performance enhancement areas for Splunk Observability Cloud. For instance, Splunk Observability Cloud's IT service intelligence core part needs improvements as clients request more IT services performance matrices than the current system supports."
"To improve Splunk Observability Cloud, we need more applications to be included in the observability so that more applications can have agents to monitor them and bring that information to the cloud."
 

Pricing and Cost Advice

Information not available
"The price of Splunk APM is less than some of its competitors."
"The solution's pricing is competitive. I rate the solution's pricing a seven out of ten. The price of the solution could be cheaper."
"Splunk has been fairly expensive, but it has been predictable."
"Splunk's infrastructure monitoring costs can be high because our billing is based on data volume measured in terabytes, rather than the number of devices being monitored."
"The solution's pricing is costly."
"The pricing is reasonable."
"Splunk offers a 14-day free trial and after that, we have to pay but the cost is reasonable."
"Splunk Infrastructure Monitoring is an expensive solution."
report
Use our free recommendation engine to learn which Network Monitoring Software solutions are best for your needs.
902,988 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
No data available
Financial Services Firm
12%
Manufacturing Company
9%
Computer Software Company
8%
Construction Company
7%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
No data available
By reviewers
Company SizeCount
Small Business32
Midsize Enterprise8
Large Enterprise55
 

Questions from the Community

What is your experience regarding pricing and costs for Packetbeat?
Elastic is pretty cheap for large enterprises but unaffordable for small ones.
What needs improvement with Packetbeat?
Packetbeat analyzes specific protocols and is not suitable for full capture of all network traffic and network flows. I recall that Packetbeat can cover a limited number of protocols including ICMP...
What is your primary use case for Packetbeat?
I have dealt with all of them: Elasticsearch, Kibana, Logstash, Beats, Elastic Agent, and Fleet, because I need to use all of them to achieve a solution for customers. These solutions are typically...
What needs improvement with SignalFx?
Regarding dashboard customization, while Splunk has many dashboard building options, customers sometimes need to create specific dashboards, particularly for applicative metrics such as Java and pr...
What is your primary use case for SignalFx?
The solution involves observability in general, such as Application Performance Monitoring, and generally addresses digital applications, web applications, sites, and mobile applications. I worked ...
What advice do you have for others considering SignalFx?
We're a customer and end-user. Currently, in France, we cannot use the artificial intelligence option. While this option is enabled for the United States and many countries, it's not yet available ...
 

Also Known As

No data available
Splunk Infrastructure Monitoring, Splunk Real User Monitoring (RUM), Splunk Synthetic Monitoring
 

Overview

 

Sample Customers

Information Not Available
Sunrun, Yelp, Onshape, Tapjoy, Symphony Commerce, Chairish, Clever, Grovo, Bazaar Voice, Zenefits, Avalara
Find out what your peers are saying about Packetbeat vs. Splunk Observability Cloud and other solutions. Updated: June 2026.
902,988 professionals have used our research since 2012.