Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-08-02 07:58:46.762 00:00:10.335 TCP 23.104.0.1:49734 -> 1.101.0.1:3000 11 1507 1 2025-08-02 07:59:13.996 00:00:10.408 TCP 1.101.0.1:3000 -> 22.102.0.1:50650 10 6452 1 2025-08-02 07:59:47.133 00:00:10.377 TCP 23.104.0.1:36454 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:00:14.444 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:42142 10 6452 1 2025-08-02 08:00:47.551 00:00:10.366 TCP 23.104.0.1:48042 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:01:14.617 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:55466 10 6452 1 2025-08-02 08:01:47.953 00:00:10.376 TCP 23.104.0.1:57860 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:02:06.856 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:02:06.988 00:00:00.028 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:02:14.786 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:56462 10 6452 1 2025-08-02 08:02:48.368 00:00:10.374 TCP 23.104.0.1:48864 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:03:15.018 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:47520 10 6452 1 2025-08-02 08:03:48.779 00:00:10.376 TCP 23.104.0.1:60936 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:04:15.228 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:34554 10 6452 1 2025-08-02 08:04:49.199 00:00:10.365 TCP 23.104.0.1:34604 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:00:05.114 00:06:00.000 TCP 179.1.22.22:39396 -> 179.1.22.1:179 7 497 1 2025-08-02 08:00:05.081 00:06:00.035 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 08:05:15.404 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:37880 10 6452 1 2025-08-02 08:05:49.600 00:00:10.372 TCP 23.104.0.1:40434 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:06:15.614 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:33288 10 6452 1 2025-08-02 08:06:50.009 00:00:10.363 TCP 23.104.0.1:38310 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:07:07.302 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:07:07.223 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:07:15.827 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:50110 10 6452 1 2025-08-02 08:07:50.411 00:00:10.416 TCP 23.104.0.1:42360 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:08:15.996 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:35008 10 6452 1 2025-08-02 08:08:50.868 00:00:10.367 TCP 23.104.0.1:39518 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:09:16.211 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:51214 10 6452 1 2025-08-02 08:09:51.271 00:00:10.372 TCP 23.104.0.1:39584 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:10:16.422 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:51076 10 6452 1 2025-08-02 08:10:51.681 00:00:10.370 TCP 23.104.0.1:35028 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:11:16.597 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:46246 10 6452 1 2025-08-02 08:07:05.115 00:06:00.018 TCP 179.1.22.22:39396 -> 179.1.22.1:179 11 705 1 2025-08-02 08:11:52.116 00:00:10.365 TCP 23.104.0.1:47800 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:12:07.210 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:07:05.083 00:06:00.053 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 08:12:06.985 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:12:16.804 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:33794 10 6452 1 2025-08-02 08:12:52.520 00:00:10.367 TCP 23.104.0.1:33276 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:13:16.979 00:00:10.150 TCP 1.101.0.1:3000 -> 22.102.0.1:56012 10 6452 1 2025-08-02 08:13:52.923 00:00:10.393 TCP 23.104.0.1:60974 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:14:17.169 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:47740 10 6452 1 2025-08-02 08:14:53.353 00:00:10.363 TCP 23.104.0.1:37886 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:15:17.384 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:58878 10 6452 1 2025-08-02 08:15:53.753 00:00:10.388 TCP 23.104.0.1:39866 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:16:17.595 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:45332 10 6452 1 2025-08-02 08:16:54.178 00:00:10.366 TCP 23.104.0.1:33352 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:17:07.248 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:17:07.172 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:17:17.817 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:38928 10 6452 1 2025-08-02 08:17:54.582 00:00:10.370 TCP 23.104.0.1:51354 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:18:18.072 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:32866 10 6452 1 2025-08-02 08:14:05.085 00:06:00.053 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 08:18:54.992 00:00:10.366 TCP 23.104.0.1:36796 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:14:05.089 00:06:00.048 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-02 08:19:18.290 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:57966 10 6452 1 2025-08-02 08:19:55.398 00:00:10.359 TCP 23.104.0.1:40768 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:20:18.503 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:46012 10 6452 1 2025-08-02 08:20:55.791 00:00:10.366 TCP 23.104.0.1:33442 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:21:18.719 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:47674 10 6452 1 2025-08-02 08:21:56.197 00:00:10.363 TCP 23.104.0.1:35422 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:22:07.347 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:22:07.456 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:22:18.934 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:56594 10 6452 1 2025-08-02 08:22:56.600 00:00:10.372 TCP 23.104.0.1:59902 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:23:19.181 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:54762 10 6452 1 2025-08-02 08:23:57.018 00:00:10.362 TCP 23.104.0.1:44218 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:24:19.395 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:42810 10 6452 1 2025-08-02 08:24:57.415 00:00:10.365 TCP 23.104.0.1:46740 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:25:19.612 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:35990 10 6452 1 2025-08-02 08:21:05.087 00:06:00.053 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 08:21:05.089 00:06:00.048 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-02 08:25:57.824 00:00:10.400 TCP 23.104.0.1:46566 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:26:19.832 00:00:10.190 TCP 1.101.0.1:3000 -> 22.102.0.1:43262 10 6452 1 2025-08-02 08:27:07.463 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:26:58.263 00:00:10.332 TCP 23.104.0.1:43676 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:27:07.427 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:27:20.080 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:35044 10 6452 1 2025-08-02 08:27:58.633 00:00:10.373 TCP 23.104.0.1:35916 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:28:20.289 00:00:10.163 TCP 1.101.0.1:3000 -> 22.102.0.1:46362 12 10365 1 2025-08-02 08:28:59.046 00:00:10.441 TCP 23.104.0.1:32942 -> 1.101.0.1:3000 15 1926 1 2025-08-02 08:29:20.489 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:52694 10 6452 1 2025-08-02 08:29:59.524 00:00:10.372 TCP 23.104.0.1:59244 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:30:20.703 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:32982 10 6452 1 2025-08-02 08:30:59.939 00:00:10.377 TCP 23.104.0.1:35514 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:31:20.922 00:00:10.205 TCP 1.101.0.1:3000 -> 22.102.0.1:38842 10 6452 1 2025-08-02 08:32:07.665 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:32:07.384 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:32:00.355 00:00:10.364 TCP 23.104.0.1:47238 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:32:21.169 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:34830 10 6452 1 2025-08-02 08:28:05.090 00:06:00.048 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-02 08:28:05.088 00:06:00.053 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 08:33:00.755 00:00:10.377 TCP 23.104.0.1:59578 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:33:21.381 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:56822 10 6452 1 2025-08-02 08:34:01.170 00:00:10.365 TCP 23.104.0.1:35608 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:34:21.594 00:00:10.204 TCP 1.101.0.1:3000 -> 22.102.0.1:51142 11 7373 1 2025-08-02 08:35:01.574 00:00:10.369 TCP 23.104.0.1:32962 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:35:21.837 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:46184 10 6452 1 2025-08-02 08:36:01.980 00:00:10.372 TCP 23.104.0.1:42014 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:36:22.015 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:47686 10 6452 1 2025-08-02 08:37:07.289 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:37:07.605 00:00:00.014 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:37:02.383 00:00:10.365 TCP 23.104.0.1:45552 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:37:22.188 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:41072 10 6452 1 2025-08-02 08:38:02.782 00:00:10.323 TCP 23.104.0.1:60934 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:38:22.400 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:32864 10 6452 1 2025-08-02 08:39:03.145 00:00:10.358 TCP 23.104.0.1:40746 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:39:22.612 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:35632 10 6452 1 2025-08-02 08:35:05.095 00:06:00.075 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-02 08:35:05.092 00:06:00.096 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 08:40:03.540 00:00:10.323 TCP 23.104.0.1:51660 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:40:22.825 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:44958 10 6452 1 2025-08-02 08:41:03.899 00:00:10.367 TCP 23.104.0.1:45062 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:41:23.071 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:52402 10 6452 1 2025-08-02 08:42:07.645 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:42:07.845 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:42:04.303 00:00:10.369 TCP 23.104.0.1:60016 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:42:23.243 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:57310 10 6452 1 2025-08-02 08:43:04.708 00:00:10.365 TCP 23.104.0.1:34480 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:43:23.415 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:47952 10 6452 1 2025-08-02 08:44:05.112 00:00:10.362 TCP 23.104.0.1:35696 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:44:23.644 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:34842 10 6452 1 2025-08-02 08:45:05.509 00:00:10.360 TCP 23.104.0.1:51636 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:45:23.862 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:41642 10 6452 1 2025-08-02 08:46:05.904 00:00:10.369 TCP 23.104.0.1:36976 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:46:24.088 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:38914 10 6452 1 2025-08-02 08:42:05.093 00:06:00.073 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 08:42:05.095 00:06:00.068 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-02 08:47:07.734 00:00:00.030 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:47:07.837 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:47:06.309 00:00:10.366 TCP 23.104.0.1:59252 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:47:24.308 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:51636 10 6452 1 2025-08-02 08:48:06.720 00:00:10.327 TCP 23.104.0.1:52980 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:48:24.528 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:55098 10 6452 1 2025-08-02 08:49:07.099 00:00:10.362 TCP 23.104.0.1:43080 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:49:24.736 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:39474 10 6452 1 2025-08-02 08:50:07.503 00:00:10.366 TCP 23.104.0.1:47556 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:50:24.909 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:54978 10 6452 1 2025-08-02 08:51:07.908 00:00:10.366 TCP 23.104.0.1:42086 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:51:25.126 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:37084 10 6452 1 2025-08-02 08:52:07.928 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:52:07.728 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:52:08.309 00:00:10.364 TCP 23.104.0.1:55382 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:52:25.341 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:53826 10 6452 1 2025-08-02 08:53:08.711 00:00:10.323 TCP 23.104.0.1:52644 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:53:25.551 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:43236 10 6452 1 2025-08-02 08:49:05.097 00:06:00.069 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-02 08:49:05.095 00:06:00.073 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-02 08:54:09.108 00:00:10.363 TCP 23.104.0.1:34724 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:54:25.722 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:39722 10 6452 1 2025-08-02 08:55:09.512 00:00:10.377 TCP 23.104.0.1:39538 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:55:25.933 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:45714 10 6452 1 2025-08-02 08:56:09.934 00:00:10.375 TCP 23.104.0.1:49768 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:56:26.165 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:34870 10 6452 1 2025-08-02 08:57:07.764 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-02 08:57:08.050 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-02 08:57:10.359 00:00:10.369 TCP 23.104.0.1:47358 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:57:26.373 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:56452 10 6452 1 2025-08-02 08:58:10.767 00:00:10.369 TCP 23.104.0.1:54310 -> 1.101.0.1:3000 11 1507 1 2025-08-02 08:58:26.584 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:49062 10 6452 1 Summary: total flows: 160, total bytes: 502097, total packets: 1553, avg bps: 1118, avg pps: 0, avg bpp: 323 Time window: 2025-08-02 07:58:46 - 2025-08-02 08:58:36 Total flows processed: 160, passed: 160, Blocks skipped: 0, Bytes read: 16704 Sys: 0.0012s User: 0.0025s Wall: 0.0015s flows/second: 104514.7 Runtime: 0.0015s