Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-08-23 10:59:01.033 00:00:10.366 TCP 23.104.0.1:40190 -> 1.101.0.1:3000 11 1507 1 2025-08-23 10:59:26.675 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:56528 10 6452 1 2025-08-23 11:00:01.441 00:00:10.319 TCP 23.104.0.1:45468 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:00:26.891 00:00:10.141 TCP 1.101.0.1:3000 -> 22.102.0.1:41608 10 6452 1 2025-08-23 11:01:01.805 00:00:10.362 TCP 23.104.0.1:44644 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:01:27.094 00:00:10.198 TCP 1.101.0.1:3000 -> 22.102.0.1:54098 10 6452 1 2025-08-23 11:02:16.792 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:02:17.019 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:02:02.203 00:00:23.238 TCP 23.104.0.1:52758 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:02:27.342 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:36384 10 6452 1 2025-08-23 10:59:15.944 00:05:00.508 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:03:15.490 00:00:10.322 TCP 23.104.0.1:35974 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:03:27.515 00:00:10.129 TCP 1.101.0.1:3000 -> 22.102.0.1:58380 10 6452 1 2025-08-23 11:00:15.942 00:05:00.512 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:04:15.855 00:00:10.378 TCP 23.104.0.1:49186 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:04:27.686 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:48836 10 6452 1 2025-08-23 11:05:16.272 00:00:10.325 TCP 23.104.0.1:42622 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:05:27.899 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:60426 10 6452 1 2025-08-23 11:06:16.634 00:00:10.365 TCP 23.104.0.1:43834 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:06:28.110 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:35696 10 6452 1 2025-08-23 11:07:17.208 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:07:17.178 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:07:17.048 00:00:10.360 TCP 23.104.0.1:59866 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:07:28.321 00:00:10.533 TCP 1.101.0.1:3000 -> 22.102.0.1:55534 10 6452 1 2025-08-23 11:08:17.448 00:00:10.370 TCP 23.104.0.1:45986 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:08:28.892 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:56386 10 6452 1 2025-08-23 11:05:15.945 00:05:00.508 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:09:17.856 00:00:10.380 TCP 23.104.0.1:36748 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:09:29.113 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:44930 10 6452 1 2025-08-23 11:06:15.943 00:05:00.512 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:10:18.272 00:00:10.325 TCP 23.104.0.1:40484 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:10:29.327 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:46942 10 6452 1 2025-08-23 11:11:18.632 00:00:10.321 TCP 23.104.0.1:58858 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:11:29.500 00:00:10.167 TCP 1.101.0.1:3000 -> 22.102.0.1:41112 10 6452 1 2025-08-23 11:12:17.047 00:00:00.046 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:12:17.088 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:12:18.995 00:00:10.369 TCP 23.104.0.1:38994 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:12:29.709 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:39398 10 6452 1 2025-08-23 11:13:19.400 00:00:10.368 TCP 23.104.0.1:55174 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:13:29.879 00:00:10.193 TCP 1.101.0.1:3000 -> 22.102.0.1:56412 10 6452 1 2025-08-23 11:14:19.809 00:00:10.366 TCP 23.104.0.1:46770 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:14:30.115 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:38876 10 6452 1 2025-08-23 11:11:15.946 00:05:00.513 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:15:20.211 00:00:10.364 TCP 23.104.0.1:40790 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:15:30.338 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:56200 10 6452 1 2025-08-23 11:12:15.944 00:05:00.518 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:16:20.612 00:00:10.321 TCP 23.104.0.1:59640 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:16:30.519 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:59682 10 6452 1 2025-08-23 11:17:17.321 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:17:17.035 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:17:20.980 00:00:10.369 TCP 23.104.0.1:54640 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:17:30.724 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:40870 10 6452 1 2025-08-23 11:18:21.388 00:00:10.371 TCP 23.104.0.1:57698 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:18:30.936 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:45414 10 6452 1 2025-08-23 11:19:21.799 00:00:10.375 TCP 23.104.0.1:53908 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:19:31.172 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:48516 10 6452 1 2025-08-23 11:20:22.217 00:00:10.377 TCP 23.104.0.1:40430 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:20:31.389 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:51554 10 6452 1 2025-08-23 11:17:15.951 00:05:00.510 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:21:22.643 00:00:10.364 TCP 23.104.0.1:33442 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:21:31.602 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:49656 10 6452 1 2025-08-23 11:22:17.259 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:18:15.949 00:05:00.514 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:22:17.420 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:22:23.052 00:00:10.324 TCP 23.104.0.1:53350 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:22:31.819 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:54042 10 6452 1 2025-08-23 11:23:23.417 00:00:10.369 TCP 23.104.0.1:45734 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:23:31.994 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:44036 10 6452 1 2025-08-23 11:24:23.836 00:00:10.384 TCP 23.104.0.1:49772 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:24:32.217 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:33638 10 6452 1 2025-08-23 11:25:24.264 00:00:10.364 TCP 23.104.0.1:51490 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:25:32.428 00:00:10.484 TCP 1.101.0.1:3000 -> 22.102.0.1:50694 10 6452 1 2025-08-23 11:26:24.668 00:00:10.363 TCP 23.104.0.1:43106 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:26:32.948 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:43728 10 6452 1 2025-08-23 11:27:17.369 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:27:17.436 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:23:15.958 00:05:00.505 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:27:25.101 00:00:10.365 TCP 23.104.0.1:45986 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:27:33.182 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:45166 10 6452 1 2025-08-23 11:24:15.954 00:05:00.510 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:28:25.503 00:00:10.364 TCP 23.104.0.1:41150 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:28:33.409 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:34786 10 6452 1 2025-08-23 11:29:25.922 00:00:10.342 TCP 23.104.0.1:33636 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:29:33.622 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:48798 10 6452 1 2025-08-23 11:30:26.300 00:00:10.323 TCP 23.104.0.1:34800 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:30:33.828 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:52814 10 6452 1 2025-08-23 11:31:26.665 00:00:10.360 TCP 23.104.0.1:53778 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:31:34.066 00:00:10.154 TCP 1.101.0.1:3000 -> 22.102.0.1:39806 10 6452 1 2025-08-23 11:32:17.728 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:32:17.832 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:32:27.095 00:00:10.370 TCP 23.104.0.1:50204 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:32:34.257 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:40142 10 6452 1 2025-08-23 11:29:15.963 00:05:00.503 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:33:27.502 00:00:10.371 TCP 23.104.0.1:48138 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:33:34.464 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:34096 10 6452 1 2025-08-23 11:30:15.960 00:05:00.508 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:34:27.914 00:00:10.386 TCP 23.104.0.1:55304 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:34:34.670 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:52126 10 6452 1 2025-08-23 11:35:28.333 00:00:10.363 TCP 23.104.0.1:41962 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:35:34.883 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:57086 10 6452 1 2025-08-23 11:36:28.734 00:00:10.377 TCP 23.104.0.1:58492 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:36:35.081 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:38878 10 6452 1 2025-08-23 11:37:17.642 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:37:17.837 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:37:29.141 00:00:10.363 TCP 23.104.0.1:53190 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:37:35.292 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:35768 10 6452 1 2025-08-23 11:38:29.540 00:00:10.332 TCP 23.104.0.1:34176 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:38:35.508 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:32844 10 6452 1 2025-08-23 11:35:15.963 00:05:00.506 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:39:29.909 00:00:10.372 TCP 23.104.0.1:43348 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:39:35.726 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:48346 10 6452 1 2025-08-23 11:36:15.961 00:05:00.510 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:40:30.322 00:00:10.359 TCP 23.104.0.1:43120 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:40:35.940 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:39190 10 6452 1 2025-08-23 11:41:30.721 00:00:10.380 TCP 23.104.0.1:60006 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:41:36.176 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:35568 10 6452 1 2025-08-23 11:42:17.864 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:42:17.665 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:42:31.135 00:00:10.367 TCP 23.104.0.1:57310 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:42:36.386 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:35566 10 6452 1 2025-08-23 11:43:31.538 00:00:10.326 TCP 23.104.0.1:48600 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:43:36.564 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:38274 10 6452 1 2025-08-23 11:44:36.794 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:35118 10 6452 1 2025-08-23 11:44:31.904 00:00:10.329 TCP 23.104.0.1:54672 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:41:15.965 00:05:00.504 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:45:32.270 00:00:10.366 TCP 23.104.0.1:50934 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:45:37.003 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:33162 10 6452 1 2025-08-23 11:42:15.968 00:05:00.505 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:46:32.682 00:00:10.384 TCP 23.104.0.1:54840 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:46:37.227 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:57910 10 6452 1 2025-08-23 11:47:18.098 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:47:17.961 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:47:33.112 00:00:10.373 TCP 23.104.0.1:41474 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:47:37.442 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:44140 10 6452 1 2025-08-23 11:48:33.530 00:00:10.368 TCP 23.104.0.1:34680 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:48:37.659 00:00:10.142 TCP 1.101.0.1:3000 -> 22.102.0.1:46864 10 6452 1 2025-08-23 11:49:33.940 00:00:10.378 TCP 23.104.0.1:42814 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:49:37.839 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:56714 10 6452 1 2025-08-23 11:50:34.354 00:00:10.362 TCP 23.104.0.1:41576 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:50:38.075 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:45176 10 6452 1 2025-08-23 11:47:15.967 00:05:00.505 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:51:34.753 00:00:10.380 TCP 23.104.0.1:39376 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:51:38.298 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:48534 10 6452 1 2025-08-23 11:48:15.965 00:05:00.510 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:52:17.964 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:52:17.936 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:52:35.177 00:00:10.361 TCP 23.104.0.1:36630 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:52:38.512 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:53422 10 6452 1 2025-08-23 11:53:35.580 00:00:10.324 TCP 23.104.0.1:55168 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:53:38.732 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:55442 10 6452 1 2025-08-23 11:54:35.946 00:00:10.368 TCP 23.104.0.1:42208 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:54:38.946 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:57170 10 6452 1 2025-08-23 11:55:36.349 00:00:10.324 TCP 23.104.0.1:57882 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:55:39.176 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:41532 10 6452 1 2025-08-23 11:56:36.709 00:00:10.329 TCP 23.104.0.1:40300 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:56:39.393 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:45810 10 6452 1 2025-08-23 11:53:15.968 00:05:00.505 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-08-23 11:57:18.081 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-23 11:57:18.264 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-23 11:57:39.608 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:39970 10 6452 1 2025-08-23 11:57:37.101 00:00:10.362 TCP 23.104.0.1:35468 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:54:15.966 00:05:00.510 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-08-23 11:58:37.505 00:00:10.367 TCP 23.104.0.1:48836 -> 1.101.0.1:3000 11 1507 1 2025-08-23 11:58:39.830 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:57990 10 6452 1 Summary: total flows: 164, total bytes: 498348, total packets: 1572, avg bps: 1102, avg pps: 0, avg bpp: 317 Time window: 2025-08-23 10:59:01 - 2025-08-23 11:59:16 Total flows processed: 164, passed: 164, Blocks skipped: 0, Bytes read: 17120 Sys: 0.0037s User: 0.0009s Wall: 0.0015s flows/second: 109935.4 Runtime: 0.0015s