Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-08-03 02:54:05.536 00:06:00.127 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 02:54:05.539 00:06:00.121 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 02:59:28.865 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:40396 10 6452 1 2025-08-03 02:59:28.179 00:00:10.361 TCP 23.104.0.1:59906 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:00:29.085 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:53812 10 6452 1 2025-08-03 03:00:28.582 00:00:10.370 TCP 23.104.0.1:57388 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:01:28.990 00:00:10.369 TCP 23.104.0.1:51856 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:01:29.297 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:33254 10 6452 1 2025-08-03 03:02:29.938 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:02:29.742 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:02:29.394 00:00:10.378 TCP 23.104.0.1:51704 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:02:29.462 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:46426 10 6452 1 2025-08-03 03:03:29.676 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:58884 10 6452 1 2025-08-03 03:03:29.817 00:00:10.370 TCP 23.104.0.1:49242 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:04:30.226 00:00:10.364 TCP 23.104.0.1:40802 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:04:29.889 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:54926 10 6452 1 2025-08-03 03:05:30.121 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:50236 10 6452 1 2025-08-03 03:05:30.633 00:00:10.370 TCP 23.104.0.1:37022 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:01:05.542 00:06:00.120 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 03:01:05.539 00:06:00.126 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 03:06:30.333 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:50330 10 6452 1 2025-08-03 03:06:31.056 00:00:10.322 TCP 23.104.0.1:51530 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:07:30.653 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:07:30.236 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:07:31.414 00:00:10.369 TCP 23.104.0.1:48974 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:07:30.555 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:48054 10 6452 1 2025-08-03 03:08:30.782 00:00:10.209 TCP 1.101.0.1:3000 -> 22.102.0.1:45654 12 10367 1 2025-08-03 03:08:31.831 00:00:10.469 TCP 23.104.0.1:45712 -> 1.101.0.1:3000 15 1926 1 2025-08-03 03:09:31.035 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:52110 10 6452 1 2025-08-03 03:09:32.336 00:00:10.374 TCP 23.104.0.1:33420 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:10:31.210 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:39054 10 6452 1 2025-08-03 03:10:32.750 00:00:10.649 TCP 23.104.0.1:48008 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:11:31.431 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:55404 10 6452 1 2025-08-03 03:11:33.436 00:00:10.368 TCP 23.104.0.1:55080 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:12:30.029 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:12:29.997 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:12:31.640 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:48304 10 6452 1 2025-08-03 03:12:33.841 00:00:10.396 TCP 23.104.0.1:44322 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:08:05.543 00:06:00.120 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 03:08:05.540 00:06:00.125 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 03:13:31.852 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:53188 10 6452 1 2025-08-03 03:13:34.281 00:00:10.366 TCP 23.104.0.1:35160 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:14:32.080 00:00:10.168 TCP 1.101.0.1:3000 -> 22.102.0.1:51876 10 6452 1 2025-08-03 03:14:34.684 00:00:10.362 TCP 23.104.0.1:53620 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:15:35.107 00:00:10.363 TCP 23.104.0.1:34984 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:15:32.287 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:45648 10 6452 1 2025-08-03 03:16:35.513 00:00:10.386 TCP 23.104.0.1:41224 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:16:32.500 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:49924 10 6452 1 2025-08-03 03:17:30.141 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:17:29.881 00:00:00.020 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:17:32.709 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:54954 10 6452 1 2025-08-03 03:17:35.941 00:00:10.374 TCP 23.104.0.1:53600 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:18:36.357 00:00:10.444 TCP 23.104.0.1:60042 -> 1.101.0.1:3000 15 1926 1 2025-08-03 03:18:32.919 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:46856 12 10367 1 2025-08-03 03:19:33.165 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:44056 10 6452 1 2025-08-03 03:19:36.843 00:00:10.339 TCP 23.104.0.1:58132 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:15:05.541 00:06:00.125 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 03:15:05.544 00:06:00.121 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 03:20:33.387 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:60554 10 6452 1 2025-08-03 03:20:37.225 00:00:10.368 TCP 23.104.0.1:37354 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:21:33.598 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:39152 10 6452 1 2025-08-03 03:21:37.636 00:00:10.366 TCP 23.104.0.1:34780 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:22:30.181 00:00:00.030 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:22:30.018 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:22:33.812 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:36520 10 6452 1 2025-08-03 03:22:38.047 00:00:10.365 TCP 23.104.0.1:49118 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:23:34.036 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:45190 10 6452 1 2025-08-03 03:23:38.451 00:00:10.366 TCP 23.104.0.1:36944 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:24:34.248 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:39140 10 6452 1 2025-08-03 03:24:38.855 00:00:10.377 TCP 23.104.0.1:42338 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:25:34.421 00:00:10.128 TCP 1.101.0.1:3000 -> 22.102.0.1:58014 10 6452 1 2025-08-03 03:25:39.273 00:00:10.363 TCP 23.104.0.1:57554 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:26:34.590 00:00:10.166 TCP 1.101.0.1:3000 -> 22.102.0.1:35488 10 6452 1 2025-08-03 03:26:39.671 00:00:10.368 TCP 23.104.0.1:33722 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:22:05.542 00:06:00.125 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 03:22:05.545 00:06:00.120 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 03:27:30.322 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:27:30.449 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:27:34.797 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:40268 10 6452 1 2025-08-03 03:27:40.107 00:00:10.327 TCP 23.104.0.1:58018 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:28:35.006 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:36432 10 6452 1 2025-08-03 03:28:40.469 00:00:10.368 TCP 23.104.0.1:36744 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:29:35.222 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:35106 10 6452 1 2025-08-03 03:29:40.876 00:00:10.356 TCP 23.104.0.1:34640 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:30:35.397 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:44642 10 6452 1 2025-08-03 03:30:41.269 00:00:10.368 TCP 23.104.0.1:54416 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:31:35.627 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:49480 10 6452 1 2025-08-03 03:31:41.674 00:00:10.327 TCP 23.104.0.1:52076 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:32:30.633 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:32:30.280 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:32:35.839 00:00:10.271 TCP 1.101.0.1:3000 -> 22.102.0.1:40788 11 6504 1 2025-08-03 03:32:42.068 00:00:10.366 TCP 23.104.0.1:39938 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:33:36.150 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:37770 10 6452 1 2025-08-03 03:33:42.475 00:00:10.360 TCP 23.104.0.1:35464 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:29:05.543 00:06:00.129 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 03:29:05.546 00:06:00.123 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 03:34:36.329 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:43422 10 6452 1 2025-08-03 03:34:42.885 00:00:10.394 TCP 23.104.0.1:45754 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:35:36.554 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:37298 10 6452 1 2025-08-03 03:35:43.320 00:00:10.379 TCP 23.104.0.1:37776 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:36:36.776 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:34156 10 6452 1 2025-08-03 03:36:43.742 00:00:10.367 TCP 23.104.0.1:49206 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:37:30.464 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:37:30.517 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:37:37.013 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:33040 10 6452 1 2025-08-03 03:37:44.141 00:00:10.376 TCP 23.104.0.1:49590 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:38:37.230 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:32930 10 6452 1 2025-08-03 03:38:44.558 00:00:10.368 TCP 23.104.0.1:56104 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:39:37.402 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:42930 10 6452 1 2025-08-03 03:39:44.961 00:00:10.366 TCP 23.104.0.1:50484 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:40:37.610 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:54954 10 6452 1 2025-08-03 03:40:45.372 00:00:10.320 TCP 23.104.0.1:34632 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:36:05.545 00:06:00.127 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 03:36:05.546 00:06:00.123 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 03:41:37.826 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:57398 10 6452 1 2025-08-03 03:41:45.738 00:00:10.366 TCP 23.104.0.1:38506 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:42:30.416 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:42:30.612 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:42:38.063 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:46538 10 6452 1 2025-08-03 03:42:46.144 00:00:10.333 TCP 23.104.0.1:38824 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:43:38.234 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:53796 10 6452 1 2025-08-03 03:43:46.523 00:00:10.375 TCP 23.104.0.1:39990 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:44:38.444 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:50016 10 6452 1 2025-08-03 03:44:46.939 00:00:10.469 TCP 23.104.0.1:48778 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:45:38.653 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:53222 10 6452 1 2025-08-03 03:45:47.454 00:00:10.366 TCP 23.104.0.1:43200 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:46:38.868 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:44106 10 6452 1 2025-08-03 03:46:47.863 00:00:10.323 TCP 23.104.0.1:47172 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:47:30.597 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:47:30.681 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:47:39.090 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:47570 10 6452 1 2025-08-03 03:47:48.227 00:00:10.368 TCP 23.104.0.1:48556 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:43:05.547 00:06:00.128 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 03:43:05.548 00:06:00.123 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 03:48:39.306 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:47172 10 6452 1 2025-08-03 03:48:48.631 00:00:10.366 TCP 23.104.0.1:39776 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:49:39.520 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:39932 10 6452 1 2025-08-03 03:49:49.031 00:00:10.368 TCP 23.104.0.1:35934 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:50:39.728 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:58412 10 6452 1 2025-08-03 03:50:49.434 00:00:10.366 TCP 23.104.0.1:42950 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:51:39.939 00:00:10.202 TCP 1.101.0.1:3000 -> 22.102.0.1:52868 10 6452 1 2025-08-03 03:51:49.835 00:00:10.386 TCP 23.104.0.1:60092 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:52:31.119 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:52:30.950 00:00:00.030 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:52:40.178 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:52190 10 6452 1 2025-08-03 03:52:50.259 00:00:10.332 TCP 23.104.0.1:48100 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:53:40.347 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:49646 10 6452 1 2025-08-03 03:53:50.618 00:00:10.364 TCP 23.104.0.1:49352 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:54:40.557 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:45910 10 6452 1 2025-08-03 03:54:51.026 00:00:10.361 TCP 23.104.0.1:42222 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:50:05.550 00:06:00.123 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 03:50:05.548 00:06:00.128 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 03:55:40.770 00:00:10.147 TCP 1.101.0.1:3000 -> 22.102.0.1:40984 10 6452 1 2025-08-03 03:55:51.427 00:00:10.362 TCP 23.104.0.1:57756 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:56:40.958 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:39662 10 6452 1 2025-08-03 03:56:51.827 00:00:10.388 TCP 23.104.0.1:33130 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:57:30.924 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 03:57:30.926 00:00:00.020 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 03:57:41.188 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:34826 10 6452 1 2025-08-03 03:57:52.256 00:00:10.362 TCP 23.104.0.1:54674 -> 1.101.0.1:3000 11 1507 1 2025-08-03 03:58:41.407 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:33392 10 6452 1 Summary: total flows: 161, total bytes: 506299, total packets: 1586, avg bps: 1042, avg pps: 0, avg bpp: 319 Time window: 2025-08-03 02:54:05 - 2025-08-03 03:58:51 Total flows processed: 161, passed: 161, Blocks skipped: 0, Bytes read: 16808 Sys: 0.0027s User: 0.0018s Wall: 0.0031s flows/second: 51438.4 Runtime: 0.0032s