Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-08-06 11:59:06.995 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 11:59:07.084 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 11:59:02.306 00:00:10.366 TCP 23.104.0.1:49946 -> 1.101.0.1:3000 11 1507 1 2025-08-06 11:59:12.355 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:60686 10 6452 1 2025-08-06 12:00:02.714 00:00:10.373 TCP 23.104.0.1:42616 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:00:12.569 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:37406 10 6452 1 2025-08-06 11:56:07.162 00:06:00.718 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-06 12:01:03.131 00:00:10.369 TCP 23.104.0.1:56096 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:01:12.744 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:37592 10 6452 1 2025-08-06 12:02:03.535 00:00:10.335 TCP 23.104.0.1:47992 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:02:12.977 00:00:10.207 TCP 1.101.0.1:3000 -> 22.102.0.1:35832 10 6452 1 2025-08-06 12:03:03.909 00:00:10.369 TCP 23.104.0.1:40664 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:03:13.228 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:54480 10 6452 1 2025-08-06 12:04:07.142 00:00:00.029 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:04:07.267 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:04:04.336 00:00:10.368 TCP 23.104.0.1:52716 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:04:13.448 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:40236 12 6556 1 2025-08-06 12:00:07.161 00:06:00.722 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-06 12:05:04.741 00:00:10.325 TCP 23.104.0.1:55338 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:05:13.661 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:51778 10 6452 1 2025-08-06 12:06:05.109 00:00:10.366 TCP 23.104.0.1:42676 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:06:13.875 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:39390 10 6452 1 2025-08-06 12:07:05.512 00:00:10.324 TCP 23.104.0.1:37542 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:07:14.106 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:40588 10 6452 1 2025-08-06 12:03:07.165 00:06:00.717 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-06 12:08:05.877 00:00:10.325 TCP 23.104.0.1:42766 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:08:14.321 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:53614 10 6452 1 2025-08-06 12:09:07.462 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:09:07.457 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:09:06.238 00:00:10.368 TCP 23.104.0.1:54574 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:09:14.500 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:49548 10 6452 1 2025-08-06 12:10:06.646 00:00:10.363 TCP 23.104.0.1:50314 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:10:14.713 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:59284 10 6452 1 2025-08-06 12:11:07.051 00:00:10.373 TCP 23.104.0.1:38506 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:11:14.899 00:00:10.149 TCP 1.101.0.1:3000 -> 22.102.0.1:43428 10 6452 1 2025-08-06 12:07:07.164 00:06:00.720 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-06 12:12:07.450 00:00:10.365 TCP 23.104.0.1:53740 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:12:15.090 00:00:10.350 TCP 1.101.0.1:3000 -> 22.102.0.1:52552 10 6452 1 2025-08-06 12:13:07.853 00:00:10.374 TCP 23.104.0.1:52652 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:13:15.480 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:59458 10 6452 1 2025-08-06 12:14:07.522 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:14:07.261 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:14:08.270 00:00:10.366 TCP 23.104.0.1:41374 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:14:15.688 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:43640 10 6452 1 2025-08-06 12:10:07.168 00:06:00.715 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-06 12:15:08.676 00:00:10.366 TCP 23.104.0.1:37036 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:15:15.906 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:55760 10 6452 1 2025-08-06 12:16:09.106 00:00:10.322 TCP 23.104.0.1:40568 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:16:16.123 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:35064 10 6452 1 2025-08-06 12:17:09.468 00:00:10.369 TCP 23.104.0.1:60126 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:17:16.289 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:45236 10 6452 1 2025-08-06 12:18:09.878 00:00:10.370 TCP 23.104.0.1:41220 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:18:16.500 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:60380 10 6452 1 2025-08-06 12:19:08.108 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:19:07.695 00:00:00.025 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:14:07.164 00:06:00.722 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-06 12:19:10.286 00:00:10.336 TCP 23.104.0.1:34982 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:19:16.710 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:47630 10 6452 1 2025-08-06 12:20:10.663 00:00:10.365 TCP 23.104.0.1:50506 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:20:16.920 00:00:10.146 TCP 1.101.0.1:3000 -> 22.102.0.1:39286 10 6452 1 2025-08-06 12:21:11.089 00:00:10.365 TCP 23.104.0.1:37496 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:21:17.101 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:37918 10 6452 1 2025-08-06 12:17:07.167 00:06:00.717 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-06 12:22:11.494 00:00:10.367 TCP 23.104.0.1:59090 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:22:17.315 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:36562 10 6452 1 2025-08-06 12:23:11.905 00:00:10.385 TCP 23.104.0.1:42054 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:23:17.527 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:43780 10 6452 1 2025-08-06 12:24:07.756 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:24:07.591 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:24:12.343 00:00:10.373 TCP 23.104.0.1:57190 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:24:17.745 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:49904 10 6452 1 2025-08-06 12:25:12.751 00:00:10.381 TCP 23.104.0.1:52058 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:25:17.918 00:00:10.168 TCP 1.101.0.1:3000 -> 22.102.0.1:50330 10 6452 1 2025-08-06 12:21:07.166 00:06:00.724 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-06 12:26:13.172 00:00:10.386 TCP 23.104.0.1:56186 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:26:18.127 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:44182 10 6452 1 2025-08-06 12:27:13.583 00:00:10.322 TCP 23.104.0.1:48708 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:27:18.340 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:44768 10 6452 1 2025-08-06 12:28:13.947 00:00:10.370 TCP 23.104.0.1:43418 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:28:18.561 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:55160 10 6452 1 2025-08-06 12:29:07.746 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:29:07.956 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:24:07.169 00:06:00.720 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-06 12:29:14.356 00:00:10.370 TCP 23.104.0.1:52130 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:29:18.732 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:38502 10 6452 1 2025-08-06 12:30:14.764 00:00:10.376 TCP 23.104.0.1:42008 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:30:18.899 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:50178 10 6452 1 2025-08-06 12:31:15.177 00:00:10.322 TCP 23.104.0.1:56008 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:31:19.129 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:55432 10 6452 1 2025-08-06 12:32:15.535 00:00:10.363 TCP 23.104.0.1:49708 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:32:19.341 00:00:10.141 TCP 1.101.0.1:3000 -> 22.102.0.1:48466 10 6452 1 2025-08-06 12:28:07.168 00:06:00.754 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-06 12:33:15.942 00:00:10.378 TCP 23.104.0.1:33192 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:33:19.517 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:51992 10 6452 1 2025-08-06 12:34:07.965 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:34:07.812 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:34:16.364 00:00:10.362 TCP 23.104.0.1:54898 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:34:19.692 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:34784 10 6452 1 2025-08-06 12:35:16.770 00:00:10.367 TCP 23.104.0.1:60604 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:35:19.903 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:40700 10 6452 1 2025-08-06 12:31:07.169 00:06:00.750 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-06 12:36:17.179 00:00:10.322 TCP 23.104.0.1:49452 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:36:20.121 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:41718 10 6452 1 2025-08-06 12:37:20.330 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:48972 10 6452 1 2025-08-06 12:37:17.545 00:00:10.363 TCP 23.104.0.1:43956 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:38:17.948 00:00:10.326 TCP 23.104.0.1:35816 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:38:20.541 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:40390 10 6452 1 2025-08-06 12:39:07.881 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:39:08.180 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:39:20.748 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:58058 10 6452 1 2025-08-06 12:39:18.315 00:00:10.364 TCP 23.104.0.1:47070 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:35:07.167 00:06:00.757 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-06 12:40:18.724 00:00:10.327 TCP 23.104.0.1:59986 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:40:20.962 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:54742 10 6452 1 2025-08-06 12:41:19.107 00:00:10.370 TCP 23.104.0.1:60454 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:41:21.182 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:54302 10 6452 1 2025-08-06 12:42:19.513 00:00:10.322 TCP 23.104.0.1:46472 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:42:21.396 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:60472 10 6452 1 2025-08-06 12:38:07.170 00:06:00.753 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-06 12:43:21.571 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:53616 10 6452 1 2025-08-06 12:43:19.872 00:00:10.370 TCP 23.104.0.1:44450 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:44:08.372 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:44:08.204 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:44:20.279 00:00:10.325 TCP 23.104.0.1:56918 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:44:21.787 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:52214 10 6452 1 2025-08-06 12:45:20.643 00:00:10.377 TCP 23.104.0.1:47706 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:45:21.995 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:60818 10 6452 1 2025-08-06 12:46:21.095 00:00:10.379 TCP 23.104.0.1:56750 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:46:22.226 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:35422 10 6452 1 2025-08-06 12:42:07.172 00:06:00.755 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-06 12:47:21.518 00:00:10.366 TCP 23.104.0.1:46798 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:47:22.441 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:43960 10 6452 1 2025-08-06 12:48:22.653 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:51894 10 6452 1 2025-08-06 12:48:21.924 00:00:10.443 TCP 23.104.0.1:47446 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:49:07.824 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:49:08.375 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:49:22.410 00:00:10.363 TCP 23.104.0.1:57172 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:49:22.868 00:00:10.682 TCP 1.101.0.1:3000 -> 22.102.0.1:33902 12 6556 1 2025-08-06 12:45:07.173 00:06:00.750 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-06 12:50:23.586 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:50250 10 6452 1 2025-08-06 12:50:22.810 00:00:10.366 TCP 23.104.0.1:33280 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:51:23.798 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:50602 10 6452 1 2025-08-06 12:51:23.215 00:00:10.326 TCP 23.104.0.1:42544 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:52:24.029 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:55976 10 6452 1 2025-08-06 12:52:23.590 00:00:10.366 TCP 23.104.0.1:55408 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:53:23.995 00:00:10.512 TCP 23.104.0.1:33926 -> 1.101.0.1:3000 17 2241 1 2025-08-06 12:53:24.243 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:40880 14 14280 1 2025-08-06 12:54:08.163 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-06 12:49:07.172 00:06:00.756 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-06 12:54:08.313 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-06 12:54:24.547 00:00:10.370 TCP 23.104.0.1:47380 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:54:24.476 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:35358 10 6452 1 2025-08-06 12:55:24.959 00:00:10.366 TCP 23.104.0.1:60042 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:55:24.709 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:38462 10 6452 1 2025-08-06 12:56:25.367 00:00:10.330 TCP 23.104.0.1:37582 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:56:24.923 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:40142 10 6452 1 2025-08-06 12:52:07.183 00:06:00.743 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-06 12:57:25.144 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:35448 10 6452 1 2025-08-06 12:57:25.740 00:00:10.327 TCP 23.104.0.1:42930 -> 1.101.0.1:3000 11 1507 1 2025-08-06 12:58:25.360 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:36624 10 6452 1 2025-08-06 12:58:26.110 00:00:10.365 TCP 23.104.0.1:40288 -> 1.101.0.1:3000 11 1507 1 Summary: total flows: 161, total bytes: 506995, total packets: 1584, avg bps: 1081, avg pps: 0, avg bpp: 320 Time window: 2025-08-06 11:56:07 - 2025-08-06 12:58:36 Total flows processed: 161, passed: 161, Blocks skipped: 0, Bytes read: 16808 Sys: 0.0017s User: 0.0017s Wall: 0.0026s flows/second: 63063.4 Runtime: 0.0026s