Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-09-06 02:59:10.536 00:00:10.370 TCP 23.104.0.1:38058 -> 1.101.0.1:3000 11 1507 1 2025-09-06 02:59:41.423 00:00:10.144 TCP 1.101.0.1:3000 -> 22.102.0.1:58522 10 6452 1 2025-09-06 03:00:10.947 00:00:10.371 TCP 23.104.0.1:41042 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:00:41.615 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:45336 10 6452 1 2025-09-06 03:01:11.373 00:00:10.367 TCP 23.104.0.1:48478 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:01:41.837 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:51550 10 6452 1 2025-09-06 02:57:24.279 00:06:00.712 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-09-06 03:02:11.796 00:00:10.362 TCP 23.104.0.1:51784 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:02:42.016 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:36594 10 6452 1 2025-09-06 03:03:12.196 00:00:10.368 TCP 23.104.0.1:57582 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:03:51.944 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:03:51.873 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:03:42.227 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:41474 10 6452 1 2025-09-06 03:04:12.601 00:00:10.324 TCP 23.104.0.1:43978 -> 1.101.0.1:3000 11 1507 1 2025-09-06 02:59:24.282 00:06:00.708 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-09-06 03:04:42.401 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:46738 10 6452 1 2025-09-06 03:05:12.967 00:00:10.384 TCP 23.104.0.1:54692 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:05:42.574 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:54834 10 6452 1 2025-09-06 03:06:13.387 00:00:10.366 TCP 23.104.0.1:44590 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:06:42.788 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:58534 10 6452 1 2025-09-06 03:07:13.791 00:00:10.344 TCP 23.104.0.1:48934 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:07:42.961 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:41448 10 6452 1 2025-09-06 03:08:14.171 00:00:10.451 TCP 23.104.0.1:42698 -> 1.101.0.1:3000 15 1926 1 2025-09-06 03:08:51.995 00:00:00.026 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:08:43.190 00:00:10.202 TCP 1.101.0.1:3000 -> 22.102.0.1:54398 12 10367 1 2025-09-06 03:08:52.162 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:09:14.671 00:00:10.360 TCP 23.104.0.1:56722 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:04:24.282 00:06:00.713 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-09-06 03:09:43.428 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:33348 10 6452 1 2025-09-06 03:10:15.093 00:00:10.365 TCP 23.104.0.1:55626 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:10:43.645 00:00:10.567 TCP 1.101.0.1:3000 -> 22.102.0.1:43438 10 6452 1 2025-09-06 03:06:24.284 00:06:00.707 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-09-06 03:11:15.496 00:00:10.366 TCP 23.104.0.1:59294 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:11:44.254 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:52108 10 6452 1 2025-09-06 03:12:15.901 00:00:10.455 TCP 23.104.0.1:36352 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:12:44.465 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:53346 10 6452 1 2025-09-06 03:13:16.391 00:00:10.365 TCP 23.104.0.1:35500 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:13:52.158 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:13:44.685 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:37924 10 6452 1 2025-09-06 03:13:52.278 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:14:16.792 00:00:10.364 TCP 23.104.0.1:51704 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:14:44.910 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:45450 10 6452 1 2025-09-06 03:15:17.195 00:00:10.322 TCP 23.104.0.1:44296 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:15:45.120 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:59732 10 6452 1 2025-09-06 03:11:24.283 00:06:00.712 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-09-06 03:16:17.557 00:00:10.367 TCP 23.104.0.1:37434 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:16:45.345 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:38650 10 6452 1 2025-09-06 03:17:17.959 00:00:10.326 TCP 23.104.0.1:40850 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:17:45.567 00:00:10.147 TCP 1.101.0.1:3000 -> 22.102.0.1:42968 10 6452 1 2025-09-06 03:13:24.286 00:06:00.708 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-09-06 03:18:18.323 00:00:10.366 TCP 23.104.0.1:60174 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:18:52.171 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:18:45.752 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:37946 10 6452 1 2025-09-06 03:18:52.331 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:19:18.726 00:00:10.372 TCP 23.104.0.1:33542 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:19:45.975 00:00:10.211 TCP 1.101.0.1:3000 -> 22.102.0.1:53828 10 6452 1 2025-09-06 03:20:19.147 00:00:10.366 TCP 23.104.0.1:51916 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:20:46.222 00:00:10.152 TCP 1.101.0.1:3000 -> 22.102.0.1:35090 10 6452 1 2025-09-06 03:21:19.558 00:00:10.367 TCP 23.104.0.1:33320 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:21:46.414 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:58920 10 6452 1 2025-09-06 03:22:19.975 00:00:10.370 TCP 23.104.0.1:39680 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:22:46.628 00:00:10.198 TCP 1.101.0.1:3000 -> 22.102.0.1:46058 10 6452 1 2025-09-06 03:18:24.285 00:06:00.711 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-09-06 03:23:20.382 00:00:10.324 TCP 23.104.0.1:39810 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:23:52.248 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:23:52.366 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:23:46.863 00:00:10.210 TCP 1.101.0.1:3000 -> 22.102.0.1:51936 10 6452 1 2025-09-06 03:24:20.744 00:00:10.365 TCP 23.104.0.1:37802 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:24:47.116 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:50374 10 6452 1 2025-09-06 03:20:24.290 00:06:00.704 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-09-06 03:25:21.147 00:00:10.358 TCP 23.104.0.1:49832 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:25:47.333 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:35796 10 6452 1 2025-09-06 03:26:21.546 00:00:10.377 TCP 23.104.0.1:56240 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:26:47.544 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:59516 10 6452 1 2025-09-06 03:27:21.985 00:00:10.373 TCP 23.104.0.1:33916 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:27:47.770 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:44676 10 6452 1 2025-09-06 03:28:22.394 00:00:10.373 TCP 23.104.0.1:55040 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:28:52.492 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:28:52.535 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:28:47.991 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:44508 10 6452 1 2025-09-06 03:29:22.818 00:00:12.528 TCP 23.104.0.1:44626 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:29:48.202 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:40100 10 6452 1 2025-09-06 03:25:24.288 00:06:00.712 TCP 179.1.22.1:179 -> 179.1.22.22:39396 14 861 1 2025-09-06 03:30:25.405 00:00:10.374 TCP 23.104.0.1:54770 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:30:48.413 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:47236 10 6452 1 2025-09-06 03:31:25.817 00:00:10.364 TCP 23.104.0.1:36572 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:31:48.631 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:55494 10 6452 1 2025-09-06 03:27:24.291 00:06:00.710 TCP 179.1.22.22:39396 -> 179.1.22.1:179 14 861 1 2025-09-06 03:32:26.216 00:00:18.594 TCP 23.104.0.1:53928 -> 1.101.0.1:3000 13 1611 1 2025-09-06 03:32:48.844 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:40404 10 6452 1 2025-09-06 03:33:34.845 00:00:10.345 TCP 23.104.0.1:49580 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:33:52.688 00:00:00.020 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:33:52.722 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:33:49.033 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:51266 10 6452 1 2025-09-06 03:34:35.231 00:00:10.369 TCP 23.104.0.1:40342 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:34:49.247 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:42072 10 6452 1 2025-09-06 03:35:35.639 00:00:17.506 TCP 23.104.0.1:42088 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:35:49.463 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:48388 10 6452 1 2025-09-06 03:32:24.289 00:05:00.717 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-06 03:36:43.202 00:00:10.367 TCP 23.104.0.1:51134 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:36:49.689 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:60090 10 6452 1 2025-09-06 03:37:43.606 00:00:10.362 TCP 23.104.0.1:52156 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:37:49.861 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:57674 10 6452 1 2025-09-06 03:34:24.293 00:05:00.737 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-06 03:38:53.169 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:38:44.013 00:00:10.364 TCP 23.104.0.1:47826 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:38:53.218 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:38:50.096 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:54508 10 6452 1 2025-09-06 03:39:44.417 00:00:10.370 TCP 23.104.0.1:42802 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:39:50.311 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:52886 10 6452 1 2025-09-06 03:40:44.821 00:00:10.362 TCP 23.104.0.1:56822 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:40:50.531 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:44718 10 6452 1 2025-09-06 03:41:45.229 00:00:10.365 TCP 23.104.0.1:52650 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:41:50.741 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:51938 10 6452 1 2025-09-06 03:38:24.292 00:05:00.743 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-06 03:42:45.635 00:00:10.362 TCP 23.104.0.1:55082 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:42:50.956 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:54772 10 6452 1 2025-09-06 03:43:52.748 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:43:52.705 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:43:46.058 00:00:10.369 TCP 23.104.0.1:33454 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:43:51.188 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:55904 10 6452 1 2025-09-06 03:40:24.295 00:05:00.737 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-06 03:44:46.463 00:00:10.366 TCP 23.104.0.1:43602 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:44:51.406 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:43600 10 6452 1 2025-09-06 03:45:46.865 00:00:10.369 TCP 23.104.0.1:54568 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:45:51.620 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:36584 10 6452 1 2025-09-06 03:46:47.271 00:00:10.364 TCP 23.104.0.1:54748 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:46:51.835 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:34836 10 6452 1 2025-09-06 03:47:47.677 00:00:10.383 TCP 23.104.0.1:43566 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:47:52.068 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:48580 10 6452 1 2025-09-06 03:44:24.293 00:05:00.743 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-06 03:48:52.888 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:48:52.832 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:48:48.110 00:00:10.362 TCP 23.104.0.1:33522 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:48:52.284 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:45900 10 6452 1 2025-09-06 03:49:48.512 00:00:10.370 TCP 23.104.0.1:57154 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:49:52.496 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:53480 10 6452 1 2025-09-06 03:46:24.296 00:05:00.739 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-06 03:50:48.917 00:00:10.372 TCP 23.104.0.1:46140 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:50:52.708 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:47066 10 6452 1 2025-09-06 03:51:49.330 00:00:10.330 TCP 23.104.0.1:52956 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:51:52.879 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:42752 10 6452 1 2025-09-06 03:52:49.695 00:00:10.368 TCP 23.104.0.1:53042 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:52:53.072 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:56670 10 6452 1 2025-09-06 03:53:52.691 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-06 03:53:52.900 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-06 03:53:50.102 00:00:10.324 TCP 23.104.0.1:39198 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:53:53.288 00:00:10.481 TCP 1.101.0.1:3000 -> 22.102.0.1:40612 10 6452 1 2025-09-06 03:50:24.293 00:05:00.745 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-06 03:54:50.465 00:00:10.360 TCP 23.104.0.1:47684 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:54:53.807 00:00:10.123 TCP 1.101.0.1:3000 -> 22.102.0.1:35004 10 6452 1 2025-09-06 03:55:50.866 00:00:10.364 TCP 23.104.0.1:56880 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:55:53.969 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:48326 10 6452 1 2025-09-06 03:52:24.296 00:05:00.739 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-06 03:56:51.269 00:00:10.363 TCP 23.104.0.1:44648 -> 1.101.0.1:3000 11 1507 1 2025-09-06 03:56:54.192 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:60062 10 6452 1 2025-09-06 03:57:54.405 00:00:10.207 TCP 1.101.0.1:3000 -> 22.102.0.1:55352 12 10367 1 2025-09-06 03:57:51.674 00:00:10.462 TCP 23.104.0.1:40420 -> 1.101.0.1:3000 15 1926 1 Summary: total flows: 158, total bytes: 498411, total packets: 1555, avg bps: 1095, avg pps: 0, avg bpp: 320 Time window: 2025-09-06 02:57:24 - 2025-09-06 03:58:04 Total flows processed: 158, passed: 158, Blocks skipped: 0, Bytes read: 16496 Sys: 0.0031s User: 0.0015s Wall: 0.0027s flows/second: 58604.5 Runtime: 0.0027s