Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-08-03 14:59:05.092 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:58676 10 6452 1 2025-08-03 14:59:18.572 00:00:10.356 TCP 23.104.0.1:39900 -> 1.101.0.1:3000 11 1507 1 2025-08-03 14:55:05.779 00:06:00.175 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 14:55:05.781 00:06:00.170 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 15:00:05.308 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:41158 10 6452 1 2025-08-03 15:00:18.971 00:00:10.380 TCP 23.104.0.1:55022 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:01:05.479 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:48362 10 6452 1 2025-08-03 15:01:19.388 00:00:10.366 TCP 23.104.0.1:44440 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:02:05.696 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:36502 10 6452 1 2025-08-03 15:02:19.790 00:00:10.365 TCP 23.104.0.1:60666 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:02:44.230 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:02:44.310 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:03:05.868 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:40268 10 6452 1 2025-08-03 15:03:20.194 00:00:10.364 TCP 23.104.0.1:57938 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:04:06.086 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:58368 10 6452 1 2025-08-03 15:04:20.596 00:00:10.364 TCP 23.104.0.1:53878 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:05:06.256 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:60654 10 6452 1 2025-08-03 15:05:21.000 00:00:10.361 TCP 23.104.0.1:55412 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:06:06.480 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:42310 10 6452 1 2025-08-03 15:06:21.407 00:00:10.372 TCP 23.104.0.1:42100 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:02:05.780 00:06:00.174 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 15:02:05.783 00:06:00.169 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 15:07:06.707 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:41638 10 6452 1 2025-08-03 15:07:21.819 00:00:10.363 TCP 23.104.0.1:55490 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:07:44.356 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:07:44.312 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:08:06.930 00:00:10.202 TCP 1.101.0.1:3000 -> 22.102.0.1:47158 10 6452 1 2025-08-03 15:08:22.222 00:00:10.364 TCP 23.104.0.1:57726 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:09:07.176 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:55276 10 6452 1 2025-08-03 15:09:22.625 00:00:10.369 TCP 23.104.0.1:33082 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:10:07.394 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:39280 10 6452 1 2025-08-03 15:10:23.032 00:00:10.361 TCP 23.104.0.1:44862 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:11:07.606 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:34626 10 6452 1 2025-08-03 15:11:23.435 00:00:10.368 TCP 23.104.0.1:41094 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:12:07.777 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:49820 10 6452 1 2025-08-03 15:12:23.838 00:00:10.339 TCP 23.104.0.1:51900 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:12:44.769 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:12:44.578 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:13:07.989 00:00:10.190 TCP 1.101.0.1:3000 -> 22.102.0.1:60352 10 6452 1 2025-08-03 15:13:24.214 00:00:10.326 TCP 23.104.0.1:59780 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:09:05.783 00:06:00.176 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 15:09:05.785 00:06:00.171 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 15:14:08.216 00:00:10.127 TCP 1.101.0.1:3000 -> 22.102.0.1:38910 10 6452 1 2025-08-03 15:14:24.577 00:00:10.359 TCP 23.104.0.1:33426 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:15:08.382 00:00:10.818 TCP 1.101.0.1:3000 -> 22.102.0.1:41726 10 6452 1 2025-08-03 15:15:24.971 00:00:10.373 TCP 23.104.0.1:46904 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:16:09.245 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:58850 10 6452 1 2025-08-03 15:16:25.377 00:00:10.364 TCP 23.104.0.1:53412 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:17:09.425 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:44622 10 6452 1 2025-08-03 15:17:25.788 00:00:10.371 TCP 23.104.0.1:60020 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:17:44.409 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:17:44.234 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:18:09.635 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:55956 10 6452 1 2025-08-03 15:18:26.198 00:00:10.364 TCP 23.104.0.1:51162 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:19:09.856 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:53432 10 6452 1 2025-08-03 15:19:26.601 00:00:10.364 TCP 23.104.0.1:34754 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:20:10.088 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:37436 10 6452 1 2025-08-03 15:20:27.003 00:00:10.328 TCP 23.104.0.1:50894 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:16:05.786 00:06:00.170 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 15:16:05.784 00:06:00.175 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 15:21:10.256 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:44170 10 6452 1 2025-08-03 15:21:27.368 00:00:10.359 TCP 23.104.0.1:46614 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:22:10.469 00:00:10.238 TCP 1.101.0.1:3000 -> 22.102.0.1:58362 11 6504 1 2025-08-03 15:22:44.462 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:22:27.772 00:00:10.379 TCP 23.104.0.1:51588 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:22:44.740 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:23:10.747 00:00:10.167 TCP 1.101.0.1:3000 -> 22.102.0.1:43246 10 6452 1 2025-08-03 15:23:28.200 00:00:10.367 TCP 23.104.0.1:43640 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:24:10.954 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:52270 10 6452 1 2025-08-03 15:24:28.612 00:00:10.378 TCP 23.104.0.1:33958 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:25:11.175 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:32994 10 6452 1 2025-08-03 15:25:29.076 00:00:10.322 TCP 23.104.0.1:34782 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:26:11.391 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:43216 10 6452 1 2025-08-03 15:26:29.439 00:00:10.358 TCP 23.104.0.1:52036 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:27:11.560 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:57488 10 6452 1 2025-08-03 15:27:29.836 00:00:10.439 TCP 23.104.0.1:46524 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:27:44.774 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:27:44.626 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:23:05.788 00:06:00.172 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 15:23:05.785 00:06:00.178 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 15:28:11.773 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:42628 10 6452 1 2025-08-03 15:28:30.321 00:00:10.365 TCP 23.104.0.1:51992 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:29:11.988 00:00:10.377 TCP 1.101.0.1:3000 -> 22.102.0.1:50816 10 6452 1 2025-08-03 15:29:30.723 00:00:10.382 TCP 23.104.0.1:55272 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:30:12.406 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:50828 10 6452 1 2025-08-03 15:30:31.134 00:00:10.363 TCP 23.104.0.1:60382 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:31:12.619 00:00:10.144 TCP 1.101.0.1:3000 -> 22.102.0.1:51862 10 6452 1 2025-08-03 15:31:31.539 00:00:10.361 TCP 23.104.0.1:57582 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:32:12.799 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:34928 10 6452 1 2025-08-03 15:32:44.652 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:32:44.696 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:32:31.936 00:00:10.373 TCP 23.104.0.1:45928 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:33:12.969 00:00:10.204 TCP 1.101.0.1:3000 -> 22.102.0.1:54948 10 6452 1 2025-08-03 15:33:32.347 00:00:10.365 TCP 23.104.0.1:36386 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:34:13.212 00:00:10.212 TCP 1.101.0.1:3000 -> 22.102.0.1:38994 10 6452 1 2025-08-03 15:34:32.747 00:00:10.360 TCP 23.104.0.1:60546 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:30:05.790 00:06:00.173 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 15:30:05.788 00:06:00.178 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 15:35:13.445 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:55552 10 6452 1 2025-08-03 15:35:33.148 00:00:10.368 TCP 23.104.0.1:44330 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:36:13.681 00:00:10.141 TCP 1.101.0.1:3000 -> 22.102.0.1:60182 10 6452 1 2025-08-03 15:36:33.558 00:00:10.365 TCP 23.104.0.1:60802 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:37:13.864 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:44328 11 6504 1 2025-08-03 15:37:44.868 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:37:44.688 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:37:33.967 00:00:10.329 TCP 23.104.0.1:34624 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:38:14.096 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:59658 10 6452 1 2025-08-03 15:38:34.333 00:00:10.326 TCP 23.104.0.1:45124 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:39:14.304 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:41452 10 6452 1 2025-08-03 15:39:34.694 00:00:10.366 TCP 23.104.0.1:57044 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:40:14.519 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:37290 10 6452 1 2025-08-03 15:40:35.115 00:00:10.367 TCP 23.104.0.1:60284 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:41:14.734 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:33868 10 6452 1 2025-08-03 15:41:35.519 00:00:10.364 TCP 23.104.0.1:39024 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:37:05.790 00:06:00.178 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 15:37:05.792 00:06:00.172 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 15:42:14.945 00:00:10.199 TCP 1.101.0.1:3000 -> 22.102.0.1:56894 10 6452 1 2025-08-03 15:42:45.022 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:42:35.924 00:00:10.394 TCP 23.104.0.1:42622 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:42:44.943 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:43:15.180 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:56030 10 6452 1 2025-08-03 15:43:36.352 00:00:10.368 TCP 23.104.0.1:43726 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:44:15.400 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:34710 10 6452 1 2025-08-03 15:44:36.760 00:00:10.382 TCP 23.104.0.1:45378 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:45:15.625 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:59580 10 6452 1 2025-08-03 15:45:37.178 00:00:10.366 TCP 23.104.0.1:59888 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:46:15.846 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:43538 10 6452 1 2025-08-03 15:46:37.587 00:00:10.402 TCP 23.104.0.1:57552 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:47:16.079 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:47046 10 6452 1 2025-08-03 15:47:45.286 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:47:45.316 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:47:38.028 00:00:10.357 TCP 23.104.0.1:51800 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:48:16.293 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:36052 10 6452 1 2025-08-03 15:48:38.428 00:00:10.365 TCP 23.104.0.1:54746 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:44:05.791 00:06:00.177 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 15:44:05.794 00:06:00.172 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 15:49:16.506 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:32906 10 6452 1 2025-08-03 15:49:38.834 00:00:10.354 TCP 23.104.0.1:35480 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:50:16.727 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:37188 10 6452 1 2025-08-03 15:50:39.229 00:00:10.367 TCP 23.104.0.1:37038 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:51:16.937 00:00:10.202 TCP 1.101.0.1:3000 -> 22.102.0.1:46634 10 6452 1 2025-08-03 15:51:39.636 00:00:10.366 TCP 23.104.0.1:52600 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:52:17.182 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:36538 10 6452 1 2025-08-03 15:52:44.980 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:52:45.025 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:52:40.057 00:00:10.366 TCP 23.104.0.1:50332 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:53:17.392 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:51484 10 6452 1 2025-08-03 15:53:40.467 00:00:10.362 TCP 23.104.0.1:35880 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:54:17.603 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:42564 10 6452 1 2025-08-03 15:54:40.873 00:00:10.355 TCP 23.104.0.1:58208 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:55:17.774 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:58486 10 6452 1 2025-08-03 15:55:41.274 00:00:10.370 TCP 23.104.0.1:47058 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:51:05.795 00:06:00.176 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-03 15:51:05.796 00:06:00.172 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-03 15:56:17.991 00:00:10.146 TCP 1.101.0.1:3000 -> 22.102.0.1:42456 10 6452 1 2025-08-03 15:56:41.703 00:00:10.384 TCP 23.104.0.1:49490 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:57:18.177 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:49684 10 6452 1 2025-08-03 15:57:46.204 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-03 15:57:46.139 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-03 15:57:42.131 00:00:10.365 TCP 23.104.0.1:58790 -> 1.101.0.1:3000 11 1507 1 2025-08-03 15:58:18.384 00:00:10.168 TCP 1.101.0.1:3000 -> 22.102.0.1:36658 10 6452 1 Summary: total flows: 161, total bytes: 497683, total packets: 1575, avg bps: 1046, avg pps: 0, avg bpp: 315 Time window: 2025-08-03 14:55:05 - 2025-08-03 15:58:28 Total flows processed: 161, passed: 161, Blocks skipped: 0, Bytes read: 16808 Sys: 0.0014s User: 0.0029s Wall: 0.0025s flows/second: 64294.3 Runtime: 0.0025s