Search Wireshark for packets that contain an IP address that are results of a DNS query.

ip.addr == 1.2.3.4

ip.src == 1.2.3.4

ip.dst == 1.2.3.4

tcp.port eq 25 or icmp

udp.port eq 53

ip.src==192.168.0.0/16 and ip.dst==192.168.0.0/16

Filter just DNS queries

dns

Filter DNS from IP and to IP

dns and (ip.src==10.42.0.174 and ip.dst==10.43.0.10)

Filter both directions of flow from client to server.

dns and (ip.src==10.42.0.174 and ip.dst==10.43.0.10) or  (ip.dst==10.42.0.174 and ip.src==10.43.0.10)

Filter based on IP response to A record request

dns.a == 1.2.3.4

Filter by specific query

dns.qry.name == "sinkhole.paloaltonetworks.com"

Filter by query that contains string

dns.qry.name contains "paloaltonetworks.com"