Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-08-20 17:58:58.204 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:46564 10 6452 1 2025-08-20 17:59:16.362 00:00:10.368 TCP 23.104.0.1:49890 -> 1.101.0.1:3000 11 1507 1 2025-08-20 17:59:58.415 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:36932 10 6452 1 2025-08-20 18:00:16.773 00:00:10.321 TCP 23.104.0.1:36724 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:00:58.665 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:00:58.780 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:00:58.638 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:36388 10 6452 1 2025-08-20 17:57:14.086 00:05:00.983 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:01:17.131 00:00:10.366 TCP 23.104.0.1:41064 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:01:58.854 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:46362 10 6452 1 2025-08-20 18:02:17.541 00:00:10.360 TCP 23.104.0.1:53928 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:02:59.084 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:40788 10 6452 1 2025-08-20 18:03:17.945 00:00:10.371 TCP 23.104.0.1:34542 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:03:59.254 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:40708 10 6452 1 2025-08-20 18:00:14.085 00:05:00.988 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:04:18.356 00:00:10.363 TCP 23.104.0.1:50268 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:04:59.488 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:58928 10 6452 1 2025-08-20 18:05:18.756 00:00:10.337 TCP 23.104.0.1:36702 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:05:58.833 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:05:58.825 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:05:59.697 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:47334 10 6452 1 2025-08-20 18:06:19.130 00:00:10.359 TCP 23.104.0.1:33118 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:06:59.904 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:40654 10 6452 1 2025-08-20 18:03:14.088 00:05:00.983 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:07:19.533 00:00:10.329 TCP 23.104.0.1:38990 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:08:00.120 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:53030 10 6452 1 2025-08-20 18:08:19.899 00:00:10.338 TCP 23.104.0.1:60738 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:09:00.336 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:59580 10 6452 1 2025-08-20 18:09:20.273 00:00:10.361 TCP 23.104.0.1:35974 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:10:00.563 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:36878 10 6452 1 2025-08-20 18:06:14.086 00:05:00.989 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:10:20.672 00:00:10.371 TCP 23.104.0.1:41744 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:10:58.906 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:10:58.855 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:11:00.781 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:51600 10 6452 1 2025-08-20 18:11:21.100 00:00:10.326 TCP 23.104.0.1:56912 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:12:00.953 00:00:10.162 TCP 1.101.0.1:3000 -> 22.102.0.1:56836 10 6452 1 2025-08-20 18:12:21.466 00:00:10.366 TCP 23.104.0.1:60498 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:13:01.151 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:54384 10 6452 1 2025-08-20 18:09:14.089 00:05:00.985 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:13:21.867 00:00:10.368 TCP 23.104.0.1:59228 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:14:01.360 00:00:10.567 TCP 1.101.0.1:3000 -> 22.102.0.1:58186 10 6452 1 2025-08-20 18:14:22.272 00:00:10.370 TCP 23.104.0.1:41612 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:15:01.967 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:59702 10 6452 1 2025-08-20 18:15:22.680 00:00:10.328 TCP 23.104.0.1:47156 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:15:58.975 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:15:59.007 00:00:00.027 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:12:14.086 00:05:00.991 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:16:02.181 00:00:10.262 TCP 1.101.0.1:3000 -> 22.102.0.1:52632 11 6504 1 2025-08-20 18:16:23.055 00:00:10.369 TCP 23.104.0.1:37310 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:17:02.486 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:34618 10 6452 1 2025-08-20 18:17:23.474 00:00:10.326 TCP 23.104.0.1:36700 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:18:02.691 00:00:10.807 TCP 1.101.0.1:3000 -> 22.102.0.1:60846 10 6452 1 2025-08-20 18:18:23.848 00:00:10.372 TCP 23.104.0.1:37626 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:19:03.541 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:36426 10 6452 1 2025-08-20 18:15:14.090 00:05:00.985 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:19:24.258 00:00:10.364 TCP 23.104.0.1:40008 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:20:03.713 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:38882 10 6452 1 2025-08-20 18:20:24.660 00:00:10.364 TCP 23.104.0.1:43022 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:20:59.029 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:20:59.033 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:21:03.931 00:00:10.205 TCP 1.101.0.1:3000 -> 22.102.0.1:38782 10 6452 1 2025-08-20 18:21:25.094 00:00:10.375 TCP 23.104.0.1:58048 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:22:04.173 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:48066 10 6452 1 2025-08-20 18:18:14.087 00:05:00.990 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:22:25.503 00:00:10.368 TCP 23.104.0.1:44928 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:23:04.407 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:59724 10 6452 1 2025-08-20 18:23:25.913 00:00:10.363 TCP 23.104.0.1:54188 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:24:04.622 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:48546 10 6452 1 2025-08-20 18:24:26.321 00:00:10.367 TCP 23.104.0.1:51052 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:25:04.838 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:37916 10 6452 1 2025-08-20 18:21:14.090 00:05:00.986 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:25:26.722 00:00:10.337 TCP 23.104.0.1:35754 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:25:58.971 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:25:58.935 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:26:05.090 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:49808 10 6452 1 2025-08-20 18:26:27.107 00:00:10.369 TCP 23.104.0.1:36548 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:27:05.306 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:57642 10 6452 1 2025-08-20 18:27:27.517 00:00:10.359 TCP 23.104.0.1:47050 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:28:05.519 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:41790 10 6452 1 2025-08-20 18:24:14.087 00:05:00.991 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:28:27.914 00:00:10.318 TCP 23.104.0.1:52416 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:29:05.732 00:00:10.190 TCP 1.101.0.1:3000 -> 22.102.0.1:42822 10 6452 1 2025-08-20 18:29:28.274 00:00:10.365 TCP 23.104.0.1:41140 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:30:05.959 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:47812 10 6452 1 2025-08-20 18:30:28.681 00:00:10.443 TCP 23.104.0.1:57908 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:30:59.402 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:30:59.235 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:27:14.090 00:05:00.987 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:31:06.182 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:36028 10 6452 1 2025-08-20 18:31:29.164 00:00:10.367 TCP 23.104.0.1:55060 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:32:06.397 00:00:10.156 TCP 1.101.0.1:3000 -> 22.102.0.1:50762 10 6452 1 2025-08-20 18:32:29.569 00:00:10.325 TCP 23.104.0.1:37444 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:33:06.566 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:43182 10 6452 1 2025-08-20 18:33:29.929 00:00:10.378 TCP 23.104.0.1:35750 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:34:06.740 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:44248 10 6452 1 2025-08-20 18:30:14.089 00:05:00.991 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:34:30.341 00:00:10.371 TCP 23.104.0.1:45114 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:35:06.953 00:00:10.190 TCP 1.101.0.1:3000 -> 22.102.0.1:38916 10 6452 1 2025-08-20 18:35:30.746 00:00:10.440 TCP 23.104.0.1:58016 -> 1.101.0.1:3000 15 1926 1 2025-08-20 18:35:59.071 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:35:59.256 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:36:07.184 00:00:10.200 TCP 1.101.0.1:3000 -> 22.102.0.1:39214 12 10367 1 2025-08-20 18:36:31.224 00:00:10.363 TCP 23.104.0.1:34618 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:33:14.091 00:05:00.988 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:37:07.430 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:49008 10 6452 1 2025-08-20 18:37:31.630 00:00:10.368 TCP 23.104.0.1:38106 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:38:07.642 00:00:10.165 TCP 1.101.0.1:3000 -> 22.102.0.1:55120 10 6452 1 2025-08-20 18:38:32.061 00:00:10.318 TCP 23.104.0.1:44252 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:39:07.844 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:46084 10 6452 1 2025-08-20 18:39:32.417 00:00:10.364 TCP 23.104.0.1:51000 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:36:14.090 00:05:00.994 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:40:08.022 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:34152 10 6452 1 2025-08-20 18:40:32.821 00:00:10.368 TCP 23.104.0.1:48232 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:40:59.586 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:40:59.706 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:41:08.231 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:45834 10 6452 1 2025-08-20 18:41:33.222 00:00:10.369 TCP 23.104.0.1:58044 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:42:08.450 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:42186 10 6452 1 2025-08-20 18:42:33.628 00:00:10.362 TCP 23.104.0.1:47478 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:39:14.093 00:05:00.988 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:43:08.668 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:47568 10 6452 1 2025-08-20 18:43:34.026 00:00:10.320 TCP 23.104.0.1:37948 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:44:08.886 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:51488 10 6452 1 2025-08-20 18:44:34.387 00:00:10.358 TCP 23.104.0.1:54522 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:45:09.104 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:33626 10 6452 1 2025-08-20 18:45:34.783 00:00:10.362 TCP 23.104.0.1:50930 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:45:59.468 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:45:59.653 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:42:14.090 00:05:00.994 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:46:09.314 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:36350 10 6452 1 2025-08-20 18:46:35.184 00:00:10.362 TCP 23.104.0.1:33750 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:47:09.533 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:37646 10 6452 1 2025-08-20 18:47:35.588 00:00:10.362 TCP 23.104.0.1:43244 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:48:09.743 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:49778 10 6452 1 2025-08-20 18:48:35.990 00:00:10.322 TCP 23.104.0.1:41590 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:45:14.093 00:05:00.990 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:49:09.956 00:00:10.148 TCP 1.101.0.1:3000 -> 22.102.0.1:50960 10 6452 1 2025-08-20 18:49:36.355 00:00:10.362 TCP 23.104.0.1:40382 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:50:10.142 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:52374 10 6452 1 2025-08-20 18:50:36.757 00:00:10.340 TCP 23.104.0.1:57232 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:50:59.914 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:50:59.544 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:51:10.358 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:57134 10 6452 1 2025-08-20 18:51:37.137 00:00:10.361 TCP 23.104.0.1:47636 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:48:14.090 00:05:00.995 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:52:10.569 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:44824 10 6452 1 2025-08-20 18:52:37.536 00:00:10.365 TCP 23.104.0.1:49190 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:53:10.775 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:60580 10 6452 1 2025-08-20 18:53:37.939 00:00:10.383 TCP 23.104.0.1:38134 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:54:10.984 00:00:10.202 TCP 1.101.0.1:3000 -> 22.102.0.1:59694 10 6452 1 2025-08-20 18:54:38.358 00:00:10.362 TCP 23.104.0.1:33760 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:51:14.093 00:05:00.989 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-20 18:55:11.229 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:33678 10 6452 1 2025-08-20 18:55:38.756 00:00:10.375 TCP 23.104.0.1:60276 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:55:59.743 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-20 18:55:59.900 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-20 18:56:11.403 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:40726 10 6452 1 2025-08-20 18:56:39.170 00:00:10.376 TCP 23.104.0.1:39580 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:57:11.574 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:50146 10 6452 1 2025-08-20 18:57:39.599 00:00:10.365 TCP 23.104.0.1:52148 -> 1.101.0.1:3000 11 1507 1 2025-08-20 18:54:14.091 00:05:00.995 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-20 18:58:11.782 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:34192 10 6452 1 2025-08-20 18:58:40.004 00:00:10.364 TCP 23.104.0.1:55438 -> 1.101.0.1:3000 11 1507 1 Summary: total flows: 164, total bytes: 502734, total packets: 1579, avg bps: 1080, avg pps: 0, avg bpp: 318 Time window: 2025-08-20 17:57:14 - 2025-08-20 18:59:15 Total flows processed: 164, passed: 164, Blocks skipped: 0, Bytes read: 17120 Sys: 0.0036s User: 0.0012s Wall: 0.0023s flows/second: 70118.8 Runtime: 0.0024s