Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-08-28 08:58:52.998 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:52082 10 6452 1 2025-08-28 08:59:39.210 00:00:00.030 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 08:59:39.027 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 08:59:32.108 00:00:10.365 TCP 23.104.0.1:45722 -> 1.101.0.1:3000 11 1507 1 2025-08-28 08:59:53.172 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:46524 10 6452 1 2025-08-28 09:00:32.514 00:00:10.365 TCP 23.104.0.1:56944 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:00:53.382 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:53170 10 6452 1 2025-08-28 08:56:19.525 00:06:00.137 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-28 09:01:32.919 00:00:10.375 TCP 23.104.0.1:60580 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:01:53.605 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:45998 10 6452 1 2025-08-28 08:57:19.527 00:06:00.132 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-28 09:02:33.328 00:00:10.370 TCP 23.104.0.1:40384 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:02:53.827 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:50094 10 6452 1 2025-08-28 09:03:33.738 00:00:15.494 TCP 23.104.0.1:41098 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:03:54.071 00:00:10.144 TCP 1.101.0.1:3000 -> 22.102.0.1:41218 10 6452 1 2025-08-28 09:04:39.049 00:00:00.044 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:04:39.464 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:04:39.269 00:00:10.361 TCP 23.104.0.1:41418 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:04:54.262 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:42640 10 6452 1 2025-08-28 09:05:39.666 00:00:10.360 TCP 23.104.0.1:46832 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:05:54.474 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:55630 10 6452 1 2025-08-28 09:06:40.095 00:00:10.370 TCP 23.104.0.1:49130 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:06:54.690 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:44970 10 6452 1 2025-08-28 09:07:40.504 00:00:10.326 TCP 23.104.0.1:39352 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:07:54.915 00:00:10.635 TCP 1.101.0.1:3000 -> 22.102.0.1:54980 10 6452 1 2025-08-28 09:03:19.525 00:06:00.149 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-28 09:08:40.869 00:00:10.365 TCP 23.104.0.1:41792 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:08:55.588 00:00:10.146 TCP 1.101.0.1:3000 -> 22.102.0.1:51912 10 6452 1 2025-08-28 09:04:19.528 00:06:00.145 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-28 09:09:39.243 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:09:39.306 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:09:41.277 00:00:10.365 TCP 23.104.0.1:57688 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:09:55.772 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:56138 10 6452 1 2025-08-28 09:10:41.680 00:00:10.365 TCP 23.104.0.1:40004 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:10:55.947 00:00:10.360 TCP 1.101.0.1:3000 -> 22.102.0.1:53694 10 6452 1 2025-08-28 09:11:42.100 00:00:10.441 TCP 23.104.0.1:41974 -> 1.101.0.1:3000 15 1926 1 2025-08-28 09:11:56.344 00:00:10.207 TCP 1.101.0.1:3000 -> 22.102.0.1:59098 12 10367 1 2025-08-28 09:12:42.582 00:00:10.329 TCP 23.104.0.1:50502 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:12:56.590 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:59846 10 6452 1 2025-08-28 09:13:42.943 00:00:10.376 TCP 23.104.0.1:58236 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:13:56.810 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:41870 10 6452 1 2025-08-28 09:14:39.562 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:14:39.233 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:14:43.362 00:00:10.326 TCP 23.104.0.1:35178 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:14:57.034 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:36354 10 6452 1 2025-08-28 09:10:19.527 00:06:00.152 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-28 09:15:43.727 00:00:10.371 TCP 23.104.0.1:34138 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:15:57.251 00:00:10.414 TCP 1.101.0.1:3000 -> 22.102.0.1:56052 10 6452 1 2025-08-28 09:11:19.529 00:06:00.146 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-28 09:16:44.138 00:00:10.361 TCP 23.104.0.1:58936 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:16:57.704 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:52716 10 6452 1 2025-08-28 09:17:44.542 00:00:10.328 TCP 23.104.0.1:60022 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:17:57.919 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:38476 10 6452 1 2025-08-28 09:18:44.906 00:00:10.363 TCP 23.104.0.1:53364 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:18:58.130 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:33422 10 6452 1 2025-08-28 09:19:39.548 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:19:39.805 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:19:45.309 00:00:10.360 TCP 23.104.0.1:34384 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:19:58.342 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:34110 10 6452 1 2025-08-28 09:20:45.705 00:00:10.380 TCP 23.104.0.1:47234 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:20:58.558 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:37102 10 6452 1 2025-08-28 09:21:46.143 00:00:10.367 TCP 23.104.0.1:46514 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:21:58.727 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:35098 10 6452 1 2025-08-28 09:17:19.529 00:06:00.170 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-28 09:22:46.548 00:00:10.384 TCP 23.104.0.1:40620 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:22:58.936 00:00:10.198 TCP 1.101.0.1:3000 -> 22.102.0.1:45482 10 6452 1 2025-08-28 09:18:19.532 00:06:00.164 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-28 09:23:46.967 00:00:10.362 TCP 23.104.0.1:38568 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:23:59.170 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:37538 10 6452 1 2025-08-28 09:24:39.750 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:24:39.630 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:24:47.370 00:00:10.365 TCP 23.104.0.1:38408 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:24:59.381 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:46568 10 6452 1 2025-08-28 09:25:47.778 00:00:10.328 TCP 23.104.0.1:40608 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:25:59.598 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:41102 10 6452 1 2025-08-28 09:26:48.143 00:00:10.370 TCP 23.104.0.1:44812 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:26:59.768 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:50586 10 6452 1 2025-08-28 09:27:48.545 00:00:10.363 TCP 23.104.0.1:45334 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:27:59.945 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:59000 10 6452 1 2025-08-28 09:28:48.946 00:00:10.372 TCP 23.104.0.1:53970 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:29:00.179 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:37814 10 6452 1 2025-08-28 09:24:19.531 00:06:00.177 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-28 09:29:39.855 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:29:39.445 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:29:49.352 00:00:10.358 TCP 23.104.0.1:34422 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:30:00.347 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:46706 10 6452 1 2025-08-28 09:25:19.534 00:06:00.171 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-28 09:30:49.749 00:00:10.363 TCP 23.104.0.1:41000 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:31:00.559 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:35452 10 6452 1 2025-08-28 09:31:50.153 00:00:10.359 TCP 23.104.0.1:49866 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:32:00.799 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:45912 10 6452 1 2025-08-28 09:32:50.555 00:00:10.320 TCP 23.104.0.1:45698 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:33:01.029 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:49968 10 6452 1 2025-08-28 09:33:50.915 00:00:10.370 TCP 23.104.0.1:44440 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:34:01.250 00:00:10.146 TCP 1.101.0.1:3000 -> 22.102.0.1:38086 10 6452 1 2025-08-28 09:34:39.904 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:34:39.885 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:34:51.329 00:00:10.324 TCP 23.104.0.1:42846 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:35:01.436 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:59244 10 6452 1 2025-08-28 09:35:51.693 00:00:10.365 TCP 23.104.0.1:37524 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:36:01.666 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:34098 10 6452 1 2025-08-28 09:31:19.533 00:06:00.177 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-28 09:36:52.116 00:00:10.364 TCP 23.104.0.1:33842 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:37:01.880 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:46894 10 6452 1 2025-08-28 09:32:19.535 00:06:00.172 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-28 09:37:52.519 00:00:10.325 TCP 23.104.0.1:41408 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:38:02.076 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:52520 10 6452 1 2025-08-28 09:38:52.883 00:00:10.370 TCP 23.104.0.1:49668 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:39:02.297 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:54678 10 6452 1 2025-08-28 09:39:40.277 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:39:40.273 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:39:53.293 00:00:10.362 TCP 23.104.0.1:58292 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:40:02.510 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:35978 10 6452 1 2025-08-28 09:40:53.693 00:00:10.364 TCP 23.104.0.1:52852 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:41:02.723 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:57534 10 6452 1 2025-08-28 09:41:54.106 00:00:10.365 TCP 23.104.0.1:54136 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:42:02.955 00:00:10.143 TCP 1.101.0.1:3000 -> 22.102.0.1:59528 10 6452 1 2025-08-28 09:42:54.507 00:00:10.369 TCP 23.104.0.1:35260 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:43:03.136 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:60954 10 6452 1 2025-08-28 09:38:19.541 00:06:00.171 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-28 09:43:54.912 00:00:10.367 TCP 23.104.0.1:49648 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:44:03.360 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:59340 10 6452 1 2025-08-28 09:39:19.544 00:06:00.166 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-28 09:44:39.989 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:44:39.991 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:44:55.326 00:00:10.324 TCP 23.104.0.1:40874 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:45:03.533 00:00:10.434 TCP 1.101.0.1:3000 -> 22.102.0.1:40752 10 6452 1 2025-08-28 09:45:55.686 00:00:10.369 TCP 23.104.0.1:54342 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:46:04.011 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:60924 10 6452 1 2025-08-28 09:46:56.106 00:00:10.368 TCP 23.104.0.1:36976 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:47:04.230 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:41060 10 6452 1 2025-08-28 09:47:56.515 00:00:10.368 TCP 23.104.0.1:55086 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:48:04.403 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:43716 10 6452 1 2025-08-28 09:48:56.922 00:00:10.384 TCP 23.104.0.1:50322 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:49:04.615 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:48684 10 6452 1 2025-08-28 09:49:40.030 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:49:40.112 00:00:00.037 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:49:57.346 00:00:10.364 TCP 23.104.0.1:41048 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:50:04.829 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:43582 10 6452 1 2025-08-28 09:45:19.542 00:06:00.172 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-28 09:50:57.749 00:00:10.333 TCP 23.104.0.1:59146 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:51:05.046 00:00:10.148 TCP 1.101.0.1:3000 -> 22.102.0.1:40322 10 6452 1 2025-08-28 09:46:19.545 00:06:00.167 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-08-28 09:51:58.116 00:00:10.364 TCP 23.104.0.1:53420 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:52:05.238 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:47090 10 6452 1 2025-08-28 09:52:58.517 00:00:10.370 TCP 23.104.0.1:35902 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:53:05.453 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:52934 10 6452 1 2025-08-28 09:53:58.928 00:00:10.384 TCP 23.104.0.1:35186 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:54:05.624 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:47000 10 6452 1 2025-08-28 09:54:40.565 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-08-28 09:54:40.348 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-08-28 09:54:59.347 00:00:10.374 TCP 23.104.0.1:55674 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:55:05.841 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:58178 10 6452 1 2025-08-28 09:55:59.766 00:00:10.379 TCP 23.104.0.1:53178 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:56:06.074 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:41472 10 6452 1 2025-08-28 09:57:00.182 00:00:10.323 TCP 23.104.0.1:41624 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:57:06.291 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:43350 10 6452 1 2025-08-28 09:52:19.543 00:06:00.171 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-08-28 09:58:00.542 00:00:10.363 TCP 23.104.0.1:59326 -> 1.101.0.1:3000 11 1507 1 2025-08-28 09:58:06.516 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:37844 10 6452 1 2025-08-28 09:53:19.545 00:06:00.167 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 Summary: total flows: 161, total bytes: 501913, total packets: 1579, avg bps: 1062, avg pps: 0, avg bpp: 317 Time window: 2025-08-28 08:56:19 - 2025-08-28 09:59:19 Total flows processed: 161, passed: 161, Blocks skipped: 0, Bytes read: 16808 Sys: 0.0035s User: 0.0012s Wall: 0.0023s flows/second: 68892.4 Runtime: 0.0024s