Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-10-25 09:58:44.513 00:00:11.243 TCP 1.101.0.1:3000 -> 23.104.0.1:35098 10 6452 1 2025-10-25 09:59:49.759 00:00:00.237 TCP 179.21.23.21:38570 -> 179.21.23.23:179 2 123 1 2025-10-25 09:59:45.793 00:00:10.363 TCP 1.101.0.1:3000 -> 23.104.0.1:44684 10 6452 1 2025-10-25 09:59:49.758 00:01:00.241 TCP 179.21.23.23:179 -> 179.21.23.21:38570 4 246 1 2025-10-25 10:00:49.760 00:00:00.236 TCP 179.21.23.21:38570 -> 179.21.23.23:179 2 123 1 2025-10-25 10:00:46.193 00:00:10.366 TCP 1.101.0.1:3000 -> 23.104.0.1:34768 10 6452 1 2025-10-25 10:01:49.756 00:00:00.241 TCP 179.21.23.23:179 -> 179.21.23.21:38570 2 123 1 2025-10-25 10:01:49.760 00:00:00.236 TCP 179.21.23.21:38570 -> 179.21.23.23:179 2 123 1 2025-10-25 10:01:46.594 00:00:10.722 TCP 1.101.0.1:3000 -> 23.104.0.1:44848 10 6452 1 2025-10-25 10:02:43.483 00:00:00.022 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:02:43.719 00:00:00.024 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:02:43.661 00:00:00.021 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:02:43.477 00:00:00.024 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:02:43.559 00:00:00.024 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:02:49.757 00:00:00.240 TCP 179.21.23.23:179 -> 179.21.23.21:38570 2 123 1 2025-10-25 10:02:47.354 00:00:10.373 TCP 1.101.0.1:3000 -> 23.104.0.1:45668 10 6452 1 2025-10-25 10:02:49.760 00:01:00.237 TCP 179.21.23.21:38570 -> 179.21.23.23:179 4 246 1 2025-10-25 10:03:47.762 00:00:10.384 TCP 1.101.0.1:3000 -> 23.104.0.1:33242 10 6452 1 2025-10-25 10:04:49.759 00:00:00.237 TCP 179.21.23.21:38570 -> 179.21.23.23:179 2 123 1 2025-10-25 10:04:48.183 00:00:10.359 TCP 1.101.0.1:3000 -> 23.104.0.1:59512 10 6452 1 2025-10-25 10:05:49.759 00:00:00.237 TCP 179.21.23.21:38570 -> 179.21.23.23:179 2 123 1 2025-10-25 10:05:48.584 00:00:10.337 TCP 1.101.0.1:3000 -> 23.104.0.1:53532 10 6452 1 2025-10-25 10:06:49.761 00:00:00.237 TCP 179.21.23.21:38570 -> 179.21.23.23:179 2 123 1 2025-10-25 10:06:48.961 00:00:10.556 TCP 1.101.0.1:3000 -> 23.104.0.1:46650 10 6452 1 2025-10-25 10:07:43.285 00:00:00.021 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:07:43.136 00:00:00.021 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:07:43.327 00:00:00.023 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:07:43.087 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:07:43.368 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:03:49.758 00:05:00.244 TCP 179.21.23.23:179 -> 179.21.23.21:38570 12 738 1 2025-10-25 10:07:49.566 00:00:10.364 TCP 1.101.0.1:3000 -> 23.104.0.1:45484 10 6452 1 2025-10-25 10:07:49.761 00:01:00.237 TCP 179.21.23.21:38570 -> 179.21.23.23:179 4 246 1 2025-10-25 10:08:49.971 00:00:10.380 TCP 1.101.0.1:3000 -> 23.104.0.1:54236 10 6452 1 2025-10-25 10:09:50.390 00:00:10.369 TCP 1.101.0.1:3000 -> 23.104.0.1:33548 10 6452 1 2025-10-25 10:10:50.796 00:00:10.366 TCP 1.101.0.1:3000 -> 23.104.0.1:49560 10 6452 1 2025-10-25 10:11:51.200 00:00:10.319 TCP 1.101.0.1:3000 -> 23.104.0.1:59874 10 6452 1 2025-10-25 10:12:43.402 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:12:43.410 00:00:00.022 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:12:43.318 00:00:00.024 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:12:43.165 00:00:00.023 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:12:43.320 00:00:00.022 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:12:51.556 00:00:10.362 TCP 1.101.0.1:3000 -> 23.104.0.1:56304 10 6452 1 2025-10-25 10:09:49.760 00:05:00.284 TCP 179.21.23.23:179 -> 179.21.23.21:38570 12 738 1 2025-10-25 10:09:49.762 00:05:00.279 TCP 179.21.23.21:38570 -> 179.21.23.23:179 12 738 1 2025-10-25 10:13:51.960 00:00:10.368 TCP 1.101.0.1:3000 -> 23.104.0.1:32972 10 6452 1 2025-10-25 10:14:52.367 00:00:10.367 TCP 1.101.0.1:3000 -> 23.104.0.1:37720 10 6452 1 2025-10-25 10:15:52.777 00:00:10.329 TCP 1.101.0.1:3000 -> 23.104.0.1:38932 10 6452 1 2025-10-25 10:16:53.141 00:00:10.368 TCP 1.101.0.1:3000 -> 23.104.0.1:45742 10 6452 1 2025-10-25 10:17:43.535 00:00:00.022 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:17:43.430 00:00:00.022 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:17:43.366 00:00:00.021 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:17:43.257 00:00:00.022 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:17:43.339 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:17:53.548 00:00:10.364 TCP 1.101.0.1:3000 -> 23.104.0.1:35812 10 6452 1 2025-10-25 10:18:53.948 00:00:10.364 TCP 1.101.0.1:3000 -> 23.104.0.1:37134 10 6452 1 2025-10-25 10:15:49.764 00:05:00.281 TCP 179.21.23.23:179 -> 179.21.23.21:38570 12 738 1 2025-10-25 10:15:49.765 00:05:00.276 TCP 179.21.23.21:38570 -> 179.21.23.23:179 12 738 1 2025-10-25 10:19:54.351 00:00:10.370 TCP 1.101.0.1:3000 -> 23.104.0.1:52726 10 6452 1 2025-10-25 10:20:54.759 00:00:10.337 TCP 1.101.0.1:3000 -> 23.104.0.1:37602 10 6452 1 2025-10-25 10:21:55.133 00:00:10.327 TCP 1.101.0.1:3000 -> 23.104.0.1:37926 10 6452 1 2025-10-25 10:22:43.527 00:00:00.021 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:22:43.429 00:00:00.023 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:22:43.478 00:00:00.023 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:22:43.446 00:00:00.022 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:22:43.530 00:00:00.023 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:22:55.493 00:00:10.327 TCP 1.101.0.1:3000 -> 23.104.0.1:38752 10 6452 1 2025-10-25 10:23:55.859 00:00:10.383 TCP 1.101.0.1:3000 -> 23.104.0.1:40552 10 6452 1 2025-10-25 10:24:56.279 00:00:10.382 TCP 1.101.0.1:3000 -> 23.104.0.1:34106 10 6452 1 2025-10-25 10:21:49.765 00:05:00.281 TCP 179.21.23.23:179 -> 179.21.23.21:38570 12 738 1 2025-10-25 10:21:49.767 00:05:00.276 TCP 179.21.23.21:38570 -> 179.21.23.23:179 12 738 1 2025-10-25 10:25:56.721 00:00:10.375 TCP 1.101.0.1:3000 -> 23.104.0.1:57370 10 6452 1 2025-10-25 10:26:57.134 00:00:10.363 TCP 1.101.0.1:3000 -> 23.104.0.1:42170 10 6452 1 2025-10-25 10:27:43.513 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:27:43.686 00:00:00.023 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:27:43.678 00:00:00.024 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:27:43.440 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:27:43.431 00:00:00.022 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:27:57.540 00:00:10.381 TCP 1.101.0.1:3000 -> 23.104.0.1:50484 10 6452 1 2025-10-25 10:28:57.964 00:00:10.331 TCP 1.101.0.1:3000 -> 23.104.0.1:37820 10 6452 1 2025-10-25 10:29:58.335 00:00:10.800 TCP 1.101.0.1:3000 -> 23.104.0.1:41822 10 6452 1 2025-10-25 10:30:59.174 00:00:10.365 TCP 1.101.0.1:3000 -> 23.104.0.1:37270 10 6452 1 2025-10-25 10:27:49.766 00:05:00.281 TCP 179.21.23.23:179 -> 179.21.23.21:38570 12 738 1 2025-10-25 10:27:49.769 00:05:00.276 TCP 179.21.23.21:38570 -> 179.21.23.23:179 12 738 1 2025-10-25 10:31:59.579 00:00:10.365 TCP 1.101.0.1:3000 -> 23.104.0.1:59608 10 6452 1 2025-10-25 10:32:43.813 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:32:43.725 00:00:00.022 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:32:43.651 00:00:00.023 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:32:43.670 00:00:00.023 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:32:43.730 00:00:00.022 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:32:59.981 00:00:10.370 TCP 1.101.0.1:3000 -> 23.104.0.1:49884 10 6452 1 2025-10-25 10:34:00.386 00:00:10.368 TCP 1.101.0.1:3000 -> 23.104.0.1:45814 10 6452 1 2025-10-25 10:35:00.793 00:00:10.372 TCP 1.101.0.1:3000 -> 23.104.0.1:45768 10 6452 1 2025-10-25 10:36:01.204 00:00:10.441 TCP 1.101.0.1:3000 -> 23.104.0.1:47590 12 10375 1 2025-10-25 10:37:01.680 00:00:10.368 TCP 1.101.0.1:3000 -> 23.104.0.1:54050 10 6452 1 2025-10-25 10:37:44.109 00:00:00.023 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:37:44.247 00:00:00.022 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:37:44.112 00:00:00.024 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:37:44.369 00:00:00.022 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:37:44.450 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:33:49.768 00:05:00.282 TCP 179.21.23.23:179 -> 179.21.23.21:38570 12 738 1 2025-10-25 10:33:49.771 00:05:00.277 TCP 179.21.23.21:38570 -> 179.21.23.23:179 12 738 1 2025-10-25 10:38:02.114 00:00:10.393 TCP 1.101.0.1:3000 -> 23.104.0.1:45038 10 6452 1 2025-10-25 10:39:02.553 00:00:10.362 TCP 1.101.0.1:3000 -> 23.104.0.1:33294 10 6452 1 2025-10-25 10:40:02.958 00:00:10.369 TCP 1.101.0.1:3000 -> 23.104.0.1:39540 10 6452 1 2025-10-25 10:41:03.367 00:00:10.323 TCP 1.101.0.1:3000 -> 23.104.0.1:38194 10 6452 1 2025-10-25 10:42:03.728 00:00:10.377 TCP 1.101.0.1:3000 -> 23.104.0.1:55188 10 6452 1 2025-10-25 10:42:44.127 00:00:00.023 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:42:44.076 00:00:00.022 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:42:43.969 00:00:00.021 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:42:43.725 00:00:00.021 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:42:44.044 00:00:00.024 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:43:04.137 00:00:10.363 TCP 1.101.0.1:3000 -> 23.104.0.1:48650 10 6452 1 2025-10-25 10:39:49.770 00:05:00.285 TCP 179.21.23.23:179 -> 179.21.23.21:38570 12 738 1 2025-10-25 10:39:49.772 00:05:00.281 TCP 179.21.23.21:38570 -> 179.21.23.23:179 12 738 1 2025-10-25 10:44:04.536 00:00:10.424 TCP 1.101.0.1:3000 -> 23.104.0.1:34798 11 6504 1 2025-10-25 10:45:05.003 00:00:10.362 TCP 1.101.0.1:3000 -> 23.104.0.1:33330 10 6452 1 2025-10-25 10:46:05.403 00:00:10.375 TCP 1.101.0.1:3000 -> 23.104.0.1:38588 10 6452 1 2025-10-25 10:47:05.809 00:00:11.683 TCP 1.101.0.1:3000 -> 23.104.0.1:34544 10 6452 1 2025-10-25 10:47:43.936 00:00:00.022 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:47:43.990 00:00:00.046 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:47:43.997 00:00:00.035 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:47:43.783 00:00:00.021 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:47:44.020 00:00:00.021 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:48:07.531 00:00:10.365 TCP 1.101.0.1:3000 -> 23.104.0.1:49902 10 6452 1 2025-10-25 10:49:07.930 00:00:10.370 TCP 1.101.0.1:3000 -> 23.104.0.1:35786 10 6452 1 2025-10-25 10:45:49.771 00:05:00.287 TCP 179.21.23.23:179 -> 179.21.23.21:38570 12 738 1 2025-10-25 10:45:49.774 00:05:00.282 TCP 179.21.23.21:38570 -> 179.21.23.23:179 12 738 1 2025-10-25 10:50:08.359 00:00:10.363 TCP 1.101.0.1:3000 -> 23.104.0.1:42508 10 6452 1 2025-10-25 10:51:08.762 00:00:10.333 TCP 1.101.0.1:3000 -> 23.104.0.1:56430 10 6452 1 2025-10-25 10:52:09.133 00:00:10.367 TCP 1.101.0.1:3000 -> 23.104.0.1:52620 10 6452 1 2025-10-25 10:52:44.168 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:52:44.185 00:00:00.022 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:52:44.089 00:00:00.021 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:52:44.104 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:52:44.085 00:00:00.023 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:53:09.540 00:00:10.365 TCP 1.101.0.1:3000 -> 23.104.0.1:35994 10 6452 1 2025-10-25 10:54:09.941 00:00:10.361 TCP 1.101.0.1:3000 -> 23.104.0.1:58742 10 6452 1 2025-10-25 10:55:10.340 00:00:12.374 TCP 1.101.0.1:3000 -> 23.104.0.1:56222 10 6452 1 2025-10-25 10:51:49.773 00:05:00.300 TCP 179.21.23.23:179 -> 179.21.23.21:38570 12 738 1 2025-10-25 10:51:49.774 00:05:00.295 TCP 179.21.23.21:38570 -> 179.21.23.23:179 12 738 1 2025-10-25 10:56:12.765 00:00:10.372 TCP 1.101.0.1:3000 -> 23.104.0.1:49594 10 6452 1 2025-10-25 10:57:13.173 00:00:10.358 TCP 1.101.0.1:3000 -> 23.104.0.1:52088 10 6452 1 2025-10-25 10:57:44.290 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-10-25 10:57:44.207 00:00:00.023 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-10-25 10:57:44.054 00:00:00.023 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-10-25 10:57:44.090 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:57:44.208 00:00:00.023 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-10-25 10:58:13.571 00:00:10.364 TCP 1.101.0.1:3000 -> 23.104.0.1:58420 10 6452 1 Summary: total flows: 148, total bytes: 420483, total packets: 1015, avg bps: 939, avg pps: 0, avg bpp: 414 Time window: 2025-10-25 09:58:44 - 2025-10-25 10:58:23 Total flows processed: 148, passed: 148, Blocks skipped: 0, Bytes read: 15456 Sys: 0.0050s User: 0.0008s Wall: 0.0027s flows/second: 54016.4 Runtime: 0.0028s