Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-08-16 13:58:43.811 00:00:10.370 TCP 23.104.0.1:55262 -> 1.101.0.1:3000 11 1507 1 2025-08-16 13:58:58.256 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 13:58:58.291 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 13:58:55.556 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:43320 10 6452 1 2025-08-16 13:59:44.217 00:00:10.363 TCP 23.104.0.1:54022 -> 1.101.0.1:3000 11 1507 1 2025-08-16 13:59:55.777 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:51886 10 6452 1 2025-08-16 13:56:12.136 00:05:00.907 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:00:44.622 00:00:10.324 TCP 23.104.0.1:52800 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:00:55.956 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:57018 10 6452 1 2025-08-16 14:01:44.984 00:00:10.327 TCP 23.104.0.1:53502 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:01:56.186 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:51856 10 6452 1 2025-08-16 14:02:45.352 00:00:10.366 TCP 23.104.0.1:55438 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:02:56.358 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:45412 10 6452 1 2025-08-16 13:59:12.139 00:05:00.908 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:03:45.760 00:00:10.352 TCP 23.104.0.1:58878 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:03:58.483 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:03:58.484 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:03:56.569 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:33658 10 6452 1 2025-08-16 14:04:46.148 00:00:10.383 TCP 23.104.0.1:44462 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:04:56.784 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:39424 10 6452 1 2025-08-16 14:05:46.583 00:00:10.361 TCP 23.104.0.1:57108 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:05:56.957 00:00:10.193 TCP 1.101.0.1:3000 -> 22.102.0.1:60860 10 6452 1 2025-08-16 14:02:12.137 00:05:00.914 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:06:46.991 00:00:10.363 TCP 23.104.0.1:49638 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:06:57.188 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:57154 10 6452 1 2025-08-16 14:07:47.395 00:00:10.331 TCP 23.104.0.1:59940 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:07:57.410 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:51902 10 6452 1 2025-08-16 14:08:58.638 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:08:47.762 00:00:10.366 TCP 23.104.0.1:35552 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:08:58.331 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:08:57.622 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:35360 10 6452 1 2025-08-16 14:05:12.139 00:05:00.910 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:09:48.167 00:00:10.320 TCP 23.104.0.1:49898 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:09:57.797 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:57440 10 6452 1 2025-08-16 14:10:48.529 00:00:10.369 TCP 23.104.0.1:51406 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:10:57.972 00:00:10.196 TCP 1.101.0.1:3000 -> 22.102.0.1:36560 10 6452 1 2025-08-16 14:11:48.939 00:00:10.353 TCP 23.104.0.1:54712 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:11:58.209 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:41080 10 6452 1 2025-08-16 14:08:12.139 00:05:00.915 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:12:49.327 00:00:10.366 TCP 23.104.0.1:53546 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:12:58.423 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:38568 10 6452 1 2025-08-16 14:13:58.662 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:13:49.732 00:00:10.366 TCP 23.104.0.1:34776 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:13:58.734 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:13:58.641 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:48322 10 6452 1 2025-08-16 14:14:50.136 00:00:10.364 TCP 23.104.0.1:45274 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:14:58.852 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:59326 10 6452 1 2025-08-16 14:11:12.141 00:05:00.911 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:15:50.542 00:00:10.359 TCP 23.104.0.1:46978 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:15:59.087 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:43496 10 6452 1 2025-08-16 14:16:50.937 00:00:10.369 TCP 23.104.0.1:51260 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:16:59.309 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:59404 10 6452 1 2025-08-16 14:17:51.345 00:00:10.323 TCP 23.104.0.1:39232 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:17:59.518 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:57848 10 6452 1 2025-08-16 14:14:12.141 00:05:00.915 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:18:58.742 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:18:58.733 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:18:51.714 00:00:10.373 TCP 23.104.0.1:43072 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:18:59.734 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:44420 10 6452 1 2025-08-16 14:19:52.127 00:00:10.364 TCP 23.104.0.1:59002 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:19:59.966 00:00:10.324 TCP 1.101.0.1:3000 -> 22.102.0.1:46834 12 6556 1 2025-08-16 14:20:52.530 00:00:10.328 TCP 23.104.0.1:47420 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:21:00.328 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:54392 10 6452 1 2025-08-16 14:17:12.145 00:05:00.909 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:21:52.890 00:00:10.372 TCP 23.104.0.1:50118 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:22:00.545 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:46506 10 6452 1 2025-08-16 14:22:53.299 00:00:10.370 TCP 23.104.0.1:50126 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:23:00.756 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:43912 10 6452 1 2025-08-16 14:23:58.914 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:23:58.595 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:23:53.710 00:00:10.320 TCP 23.104.0.1:37372 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:24:00.968 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:52766 10 6452 1 2025-08-16 14:20:12.142 00:05:00.921 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:24:54.096 00:00:10.364 TCP 23.104.0.1:60012 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:25:01.198 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:47152 10 6452 1 2025-08-16 14:25:54.498 00:00:10.366 TCP 23.104.0.1:33706 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:26:01.366 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:40108 10 6452 1 2025-08-16 14:26:54.900 00:00:10.375 TCP 23.104.0.1:56428 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:27:01.590 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:52832 10 6452 1 2025-08-16 14:23:12.144 00:05:00.915 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:27:55.310 00:00:10.366 TCP 23.104.0.1:35360 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:28:01.811 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:58234 10 6452 1 2025-08-16 14:28:58.939 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:28:58.736 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:28:55.712 00:00:10.387 TCP 23.104.0.1:35338 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:29:02.064 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:59844 10 6452 1 2025-08-16 14:29:56.136 00:00:10.364 TCP 23.104.0.1:37844 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:30:02.286 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:57902 10 6452 1 2025-08-16 14:26:12.143 00:05:00.922 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:30:56.538 00:00:10.327 TCP 23.104.0.1:39252 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:31:02.509 00:00:10.148 TCP 1.101.0.1:3000 -> 22.102.0.1:56016 10 6452 1 2025-08-16 14:31:56.904 00:00:10.375 TCP 23.104.0.1:36860 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:32:02.694 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:49302 10 6452 1 2025-08-16 14:32:57.317 00:00:10.364 TCP 23.104.0.1:45496 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:33:02.910 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:43222 10 6452 1 2025-08-16 14:29:12.147 00:05:00.914 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:33:59.130 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:33:59.292 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:33:57.719 00:00:10.329 TCP 23.104.0.1:39292 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:34:03.127 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:60866 10 6452 1 2025-08-16 14:34:58.106 00:00:10.371 TCP 23.104.0.1:50394 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:35:03.296 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:59770 10 6452 1 2025-08-16 14:35:58.526 00:00:10.360 TCP 23.104.0.1:42338 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:36:03.516 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:56008 10 6452 1 2025-08-16 14:32:12.144 00:05:00.919 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:36:58.925 00:00:10.392 TCP 23.104.0.1:40702 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:37:03.725 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:58588 10 6452 1 2025-08-16 14:37:59.352 00:00:10.375 TCP 23.104.0.1:39240 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:38:03.898 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:43786 10 6452 1 2025-08-16 14:38:58.939 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:38:59.207 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:38:59.765 00:00:10.374 TCP 23.104.0.1:57294 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:39:04.136 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:51866 10 6452 1 2025-08-16 14:35:12.146 00:05:00.915 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:40:00.185 00:00:10.346 TCP 23.104.0.1:52164 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:40:04.357 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:56666 10 6452 1 2025-08-16 14:41:00.592 00:00:10.363 TCP 23.104.0.1:32876 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:41:04.597 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:42608 10 6452 1 2025-08-16 14:42:00.996 00:00:10.363 TCP 23.104.0.1:38930 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:42:04.811 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:42982 10 6452 1 2025-08-16 14:38:12.145 00:05:00.921 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:43:01.401 00:00:10.374 TCP 23.104.0.1:50600 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:43:05.032 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:46910 10 6452 1 2025-08-16 14:43:59.100 00:00:00.041 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:43:58.925 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:44:01.810 00:00:10.369 TCP 23.104.0.1:52886 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:44:05.245 00:00:11.131 TCP 1.101.0.1:3000 -> 22.102.0.1:33408 10 6452 1 2025-08-16 14:45:06.410 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:46482 10 6452 1 2025-08-16 14:45:02.212 00:00:10.372 TCP 23.104.0.1:39440 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:41:12.148 00:05:00.918 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:46:06.621 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:38602 10 6452 1 2025-08-16 14:46:02.627 00:00:10.786 TCP 23.104.0.1:46164 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:47:06.838 00:00:10.155 TCP 1.101.0.1:3000 -> 22.102.0.1:36498 10 6452 1 2025-08-16 14:47:03.451 00:00:10.369 TCP 23.104.0.1:49174 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:48:03.855 00:00:10.370 TCP 23.104.0.1:46524 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:44:12.146 00:05:00.925 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:48:07.045 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:34064 10 6452 1 2025-08-16 14:48:59.283 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:48:59.427 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:49:04.262 00:00:10.319 TCP 23.104.0.1:57848 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:49:07.265 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:36184 10 6452 1 2025-08-16 14:50:04.623 00:00:10.320 TCP 23.104.0.1:50550 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:50:07.479 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:40354 10 6452 1 2025-08-16 14:47:12.149 00:05:00.919 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:51:04.983 00:00:10.333 TCP 23.104.0.1:44722 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:51:07.653 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:44330 10 6452 1 2025-08-16 14:52:05.362 00:00:10.369 TCP 23.104.0.1:40402 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:52:07.871 00:00:10.199 TCP 1.101.0.1:3000 -> 22.102.0.1:56266 10 6452 1 2025-08-16 14:53:05.768 00:00:10.844 TCP 23.104.0.1:33740 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:53:08.106 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:45768 10 6452 1 2025-08-16 14:53:59.363 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-16 14:53:59.491 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-16 14:54:06.652 00:00:10.319 TCP 23.104.0.1:45772 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:50:12.146 00:05:00.925 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-16 14:54:08.277 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:32916 10 6452 1 2025-08-16 14:55:08.490 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:55110 10 6452 1 2025-08-16 14:55:07.009 00:00:10.366 TCP 23.104.0.1:37018 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:56:08.694 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:54186 10 6452 1 2025-08-16 14:56:07.407 00:00:10.323 TCP 23.104.0.1:47756 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:53:12.153 00:05:00.916 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-16 14:57:07.767 00:00:10.379 TCP 23.104.0.1:38628 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:57:08.902 00:00:10.157 TCP 1.101.0.1:3000 -> 22.102.0.1:57270 10 6452 1 2025-08-16 14:58:08.182 00:00:10.359 TCP 23.104.0.1:36052 -> 1.101.0.1:3000 11 1507 1 2025-08-16 14:58:09.096 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:54488 10 6452 1 Summary: total flows: 164, total bytes: 498452, total packets: 1574, avg bps: 1069, avg pps: 0, avg bpp: 316 Time window: 2025-08-16 13:56:12 - 2025-08-16 14:58:19 Total flows processed: 164, passed: 164, Blocks skipped: 0, Bytes read: 17120 Sys: 0.0047s User: 0.0000s Wall: 0.0023s flows/second: 70724.4 Runtime: 0.0023s