Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-09-01 08:59:11.023 00:00:10.364 TCP 23.104.0.1:40166 -> 1.101.0.1:3000 11 1507 1 2025-09-01 08:59:34.662 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:34536 10 6452 1 2025-09-01 09:00:11.428 00:00:10.319 TCP 23.104.0.1:51838 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:00:34.881 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:32776 10 6452 1 2025-09-01 09:01:11.789 00:00:10.363 TCP 23.104.0.1:40466 -> 1.101.0.1:3000 11 1507 1 2025-09-01 08:57:21.902 00:05:00.597 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:01:34.920 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:01:34.919 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:01:35.115 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:40698 10 6452 1 2025-09-01 09:02:12.190 00:00:10.362 TCP 23.104.0.1:39648 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:02:35.332 00:00:10.401 TCP 1.101.0.1:3000 -> 22.102.0.1:55634 10 6452 1 2025-09-01 09:03:12.584 00:00:10.324 TCP 23.104.0.1:46664 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:03:35.771 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:42780 10 6452 1 2025-09-01 09:04:12.945 00:00:10.328 TCP 23.104.0.1:32838 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:00:21.900 00:05:00.602 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:04:35.981 00:00:10.207 TCP 1.101.0.1:3000 -> 22.102.0.1:50452 10 6452 1 2025-09-01 09:05:13.311 00:00:10.323 TCP 23.104.0.1:52222 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:05:36.225 00:00:10.147 TCP 1.101.0.1:3000 -> 22.102.0.1:34878 10 6452 1 2025-09-01 09:06:13.673 00:00:10.359 TCP 23.104.0.1:50008 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:06:34.977 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:06:34.942 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:06:36.406 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:34904 10 6452 1 2025-09-01 09:03:21.902 00:05:00.598 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:07:14.109 00:00:10.324 TCP 23.104.0.1:38200 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:07:36.629 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:51188 10 6452 1 2025-09-01 09:08:14.470 00:00:10.365 TCP 23.104.0.1:48852 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:08:36.805 00:00:10.147 TCP 1.101.0.1:3000 -> 22.102.0.1:38616 10 6452 1 2025-09-01 09:09:14.876 00:00:10.371 TCP 23.104.0.1:42110 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:09:36.987 00:00:10.190 TCP 1.101.0.1:3000 -> 22.102.0.1:54016 10 6452 1 2025-09-01 09:10:15.283 00:00:10.366 TCP 23.104.0.1:41990 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:06:21.901 00:05:00.602 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:10:37.217 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:43660 10 6452 1 2025-09-01 09:11:15.688 00:00:10.365 TCP 23.104.0.1:54566 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:11:34.806 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:11:35.053 00:00:00.037 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:11:37.430 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:47930 10 6452 1 2025-09-01 09:12:16.102 00:00:10.366 TCP 23.104.0.1:49170 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:12:37.641 00:00:10.208 TCP 1.101.0.1:3000 -> 22.102.0.1:37096 12 10367 1 2025-09-01 09:13:16.504 00:00:10.442 TCP 23.104.0.1:60220 -> 1.101.0.1:3000 15 1926 1 2025-09-01 09:09:21.904 00:05:00.597 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:13:37.887 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:34492 10 6452 1 2025-09-01 09:14:16.979 00:00:10.360 TCP 23.104.0.1:50314 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:14:38.109 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:42772 10 6452 1 2025-09-01 09:15:17.373 00:00:10.366 TCP 23.104.0.1:53186 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:15:38.297 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:35842 10 6452 1 2025-09-01 09:12:21.905 00:05:00.600 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:16:17.770 00:00:10.324 TCP 23.104.0.1:48824 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:16:35.339 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:16:35.408 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:16:38.507 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:36300 10 6452 1 2025-09-01 09:17:18.128 00:00:10.368 TCP 23.104.0.1:36214 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:17:38.716 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:34698 10 6452 1 2025-09-01 09:18:18.534 00:00:10.362 TCP 23.104.0.1:41400 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:18:38.936 00:00:10.204 TCP 1.101.0.1:3000 -> 22.102.0.1:46202 10 6452 1 2025-09-01 09:15:21.907 00:05:00.594 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:19:18.935 00:00:10.339 TCP 23.104.0.1:40228 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:19:39.173 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:58908 10 6452 1 2025-09-01 09:20:19.320 00:00:10.364 TCP 23.104.0.1:41270 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:20:39.343 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:52644 10 6452 1 2025-09-01 09:21:19.721 00:00:10.374 TCP 23.104.0.1:40288 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:21:35.358 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:21:35.207 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:21:39.559 00:00:10.168 TCP 1.101.0.1:3000 -> 22.102.0.1:53358 10 6452 1 2025-09-01 09:18:21.906 00:05:00.599 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:22:20.139 00:00:10.361 TCP 23.104.0.1:33066 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:22:39.767 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:38924 10 6452 1 2025-09-01 09:23:20.539 00:00:10.362 TCP 23.104.0.1:52604 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:23:39.983 00:00:10.154 TCP 1.101.0.1:3000 -> 22.102.0.1:46012 10 6452 1 2025-09-01 09:24:20.937 00:00:10.343 TCP 23.104.0.1:51042 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:24:40.179 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:36130 10 6452 1 2025-09-01 09:21:21.910 00:05:00.594 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:25:21.314 00:00:10.957 TCP 23.104.0.1:42804 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:25:40.349 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:35174 10 6452 1 2025-09-01 09:26:35.960 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:26:36.085 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:26:22.317 00:00:10.364 TCP 23.104.0.1:52518 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:26:40.565 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:45450 10 6452 1 2025-09-01 09:27:22.718 00:00:10.339 TCP 23.104.0.1:60932 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:27:40.785 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:37854 10 6452 1 2025-09-01 09:24:21.909 00:05:00.598 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:28:23.106 00:00:10.329 TCP 23.104.0.1:46292 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:28:40.998 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:43230 10 6452 1 2025-09-01 09:29:23.470 00:00:10.368 TCP 23.104.0.1:55602 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:29:41.177 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:58822 10 6452 1 2025-09-01 09:30:23.876 00:00:10.389 TCP 23.104.0.1:34832 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:30:41.394 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:43768 10 6452 1 2025-09-01 09:27:21.913 00:05:00.594 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:31:35.613 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:31:35.560 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:31:24.303 00:00:10.365 TCP 23.104.0.1:43166 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:31:41.607 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:54474 10 6452 1 2025-09-01 09:32:24.723 00:00:10.409 TCP 23.104.0.1:34228 -> 1.101.0.1:3000 15 1926 1 2025-09-01 09:32:41.819 00:00:10.204 TCP 1.101.0.1:3000 -> 22.102.0.1:54460 12 10367 1 2025-09-01 09:33:25.169 00:00:10.375 TCP 23.104.0.1:50894 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:33:42.081 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:42766 10 6452 1 2025-09-01 09:30:21.909 00:05:00.600 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:34:25.580 00:00:10.367 TCP 23.104.0.1:50640 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:34:42.297 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:57128 10 6452 1 2025-09-01 09:35:25.980 00:00:10.328 TCP 23.104.0.1:52184 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:35:42.468 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:35404 10 6452 1 2025-09-01 09:36:35.785 00:00:00.028 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:36:35.942 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:36:26.346 00:00:10.368 TCP 23.104.0.1:48438 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:36:42.640 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:48818 10 6452 1 2025-09-01 09:33:21.912 00:05:00.595 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:37:26.751 00:00:10.377 TCP 23.104.0.1:42776 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:37:42.854 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:38632 10 6452 1 2025-09-01 09:38:27.165 00:00:10.366 TCP 23.104.0.1:43864 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:38:43.082 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:48094 10 6452 1 2025-09-01 09:39:27.574 00:00:10.364 TCP 23.104.0.1:50708 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:39:43.296 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:59604 10 6452 1 2025-09-01 09:36:21.910 00:05:00.602 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:40:27.985 00:00:10.362 TCP 23.104.0.1:56986 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:40:43.509 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:51736 10 6452 1 2025-09-01 09:41:35.553 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:41:35.465 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:41:28.389 00:00:10.366 TCP 23.104.0.1:59378 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:41:43.682 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:41442 10 6452 1 2025-09-01 09:42:28.796 00:00:10.446 TCP 23.104.0.1:60774 -> 1.101.0.1:3000 15 1926 1 2025-09-01 09:42:43.893 00:00:10.203 TCP 1.101.0.1:3000 -> 22.102.0.1:40596 12 10367 1 2025-09-01 09:39:21.915 00:05:00.593 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:43:29.279 00:00:10.326 TCP 23.104.0.1:51742 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:43:44.137 00:00:10.206 TCP 1.101.0.1:3000 -> 22.102.0.1:39218 10 6452 1 2025-09-01 09:44:29.641 00:00:10.366 TCP 23.104.0.1:41650 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:44:44.382 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:40982 10 6452 1 2025-09-01 09:45:30.049 00:00:10.366 TCP 23.104.0.1:35044 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:45:44.601 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:59424 10 6452 1 2025-09-01 09:42:21.911 00:05:00.599 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:46:35.852 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:46:35.584 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:46:30.455 00:00:10.325 TCP 23.104.0.1:39992 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:46:44.828 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:34724 10 6452 1 2025-09-01 09:47:30.821 00:00:10.366 TCP 23.104.0.1:34682 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:47:45.067 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:37354 10 6452 1 2025-09-01 09:48:31.222 00:00:10.745 TCP 23.104.0.1:45846 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:48:45.283 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:58930 10 6452 1 2025-09-01 09:45:21.913 00:05:00.595 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:49:32.007 00:00:10.366 TCP 23.104.0.1:36054 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:49:45.492 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:46326 10 6452 1 2025-09-01 09:50:32.409 00:00:10.325 TCP 23.104.0.1:46402 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:50:45.719 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:51766 10 6452 1 2025-09-01 09:51:35.787 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:51:35.756 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:51:32.772 00:00:10.369 TCP 23.104.0.1:56886 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:51:45.928 00:00:10.202 TCP 1.101.0.1:3000 -> 22.102.0.1:38030 10 6452 1 2025-09-01 09:48:21.911 00:05:00.599 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:52:33.201 00:00:10.361 TCP 23.104.0.1:34716 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:52:46.165 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:35362 10 6452 1 2025-09-01 09:53:33.601 00:00:10.364 TCP 23.104.0.1:54288 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:53:46.388 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:51066 10 6452 1 2025-09-01 09:54:34.018 00:00:10.365 TCP 23.104.0.1:57242 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:54:46.602 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:55540 10 6452 1 2025-09-01 09:51:21.916 00:05:00.593 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-01 09:55:34.425 00:00:10.367 TCP 23.104.0.1:44138 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:55:46.824 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:46986 10 6452 1 2025-09-01 09:56:35.716 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-01 09:56:35.871 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-01 09:56:34.832 00:00:10.348 TCP 23.104.0.1:60902 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:56:47.003 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:60986 10 6452 1 2025-09-01 09:57:35.223 00:00:10.366 TCP 23.104.0.1:60820 -> 1.101.0.1:3000 11 1507 1 2025-09-01 09:57:47.216 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:38162 10 6452 1 2025-09-01 09:54:21.916 00:05:00.596 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-01 09:58:35.631 00:00:10.367 TCP 23.104.0.1:50502 -> 1.101.0.1:3000 11 1507 1 Summary: total flows: 163, total bytes: 504898, total packets: 1580, avg bps: 1085, avg pps: 0, avg bpp: 319 Time window: 2025-09-01 08:57:21 - 2025-09-01 09:59:22 Total flows processed: 163, passed: 163, Blocks skipped: 0, Bytes read: 17016 Sys: 0.0030s User: 0.0015s Wall: 0.0028s flows/second: 58403.5 Runtime: 0.0028s