Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-09-08 08:59:01.425 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:52696 10 6452 1 2025-09-08 08:59:39.718 00:00:10.373 TCP 23.104.0.1:58342 -> 1.101.0.1:3000 11 1507 1 2025-09-08 08:59:56.775 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 08:59:57.024 00:00:00.020 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:00:01.599 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:52242 10 6452 1 2025-09-08 09:00:40.132 00:00:10.366 TCP 23.104.0.1:37274 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:01:01.819 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:53412 10 6452 1 2025-09-08 09:01:40.537 00:00:10.371 TCP 23.104.0.1:38016 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:02:02.040 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:53538 10 6452 1 2025-09-08 09:02:40.945 00:00:10.378 TCP 23.104.0.1:58108 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:03:02.254 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:46998 10 6452 1 2025-09-08 08:59:25.334 00:05:00.797 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:03:41.352 00:00:10.364 TCP 23.104.0.1:33350 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:04:02.471 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:58678 10 6452 1 2025-09-08 09:00:25.331 00:05:00.803 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:04:56.921 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:04:41.748 00:00:10.366 TCP 23.104.0.1:35404 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:04:57.036 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:05:02.695 00:00:10.200 TCP 1.101.0.1:3000 -> 22.102.0.1:57540 10 6452 1 2025-09-08 09:05:42.155 00:00:10.367 TCP 23.104.0.1:34716 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:06:02.932 00:00:10.214 TCP 1.101.0.1:3000 -> 22.102.0.1:41774 10 6452 1 2025-09-08 09:06:42.558 00:00:10.369 TCP 23.104.0.1:44654 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:07:03.186 00:00:10.159 TCP 1.101.0.1:3000 -> 22.102.0.1:41082 10 6452 1 2025-09-08 09:07:42.959 00:00:10.457 TCP 23.104.0.1:60872 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:08:03.399 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:47504 10 6452 1 2025-09-08 09:08:43.455 00:00:10.325 TCP 23.104.0.1:44130 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:09:03.609 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:44158 10 6452 1 2025-09-08 09:05:25.336 00:05:00.798 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:09:43.816 00:00:10.365 TCP 23.104.0.1:39298 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:09:56.877 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:09:57.293 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:10:03.818 00:00:10.128 TCP 1.101.0.1:3000 -> 22.102.0.1:53614 10 6452 1 2025-09-08 09:06:25.333 00:05:00.804 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:10:44.218 00:00:10.371 TCP 23.104.0.1:60336 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:11:03.987 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:49220 10 6452 1 2025-09-08 09:11:44.630 00:00:10.370 TCP 23.104.0.1:32768 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:12:04.160 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:50512 10 6452 1 2025-09-08 09:12:45.051 00:00:10.365 TCP 23.104.0.1:37324 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:13:04.330 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:58396 10 6452 1 2025-09-08 09:13:45.456 00:00:10.369 TCP 23.104.0.1:54276 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:14:04.505 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:37776 10 6452 1 2025-09-08 09:14:45.859 00:00:10.371 TCP 23.104.0.1:42262 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:14:57.245 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:14:57.049 00:00:00.047 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:15:04.719 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:37428 10 6452 1 2025-09-08 09:11:25.339 00:05:00.797 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:15:46.267 00:00:10.365 TCP 23.104.0.1:38348 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:16:04.930 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:48004 12 6556 1 2025-09-08 09:12:25.338 00:05:00.802 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:16:46.674 00:00:10.362 TCP 23.104.0.1:57376 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:17:05.164 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:34854 10 6452 1 2025-09-08 09:17:47.100 00:00:10.362 TCP 23.104.0.1:44858 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:18:05.375 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:48634 10 6452 1 2025-09-08 09:18:47.515 00:00:13.970 TCP 23.104.0.1:37756 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:19:05.546 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:53840 10 6452 1 2025-09-08 09:19:57.310 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:19:51.544 00:00:10.365 TCP 23.104.0.1:41768 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:19:57.166 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:20:05.760 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:49826 12 6556 1 2025-09-08 09:20:51.946 00:00:10.337 TCP 23.104.0.1:43966 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:21:05.970 00:00:10.198 TCP 1.101.0.1:3000 -> 22.102.0.1:58678 10 6452 1 2025-09-08 09:17:25.340 00:05:00.797 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:21:52.319 00:00:10.406 TCP 23.104.0.1:58246 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:22:06.210 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:53238 10 6452 1 2025-09-08 09:18:25.337 00:05:00.803 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:22:52.763 00:00:10.338 TCP 23.104.0.1:41916 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:23:06.385 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:59080 10 6452 1 2025-09-08 09:23:53.138 00:00:10.323 TCP 23.104.0.1:52408 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:24:06.595 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:36504 10 6452 1 2025-09-08 09:24:57.327 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:24:57.551 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:24:53.500 00:00:10.363 TCP 23.104.0.1:50580 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:25:06.810 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:39638 10 6452 1 2025-09-08 09:25:53.909 00:00:10.363 TCP 23.104.0.1:40910 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:26:06.983 00:00:10.198 TCP 1.101.0.1:3000 -> 22.102.0.1:60444 10 6452 1 2025-09-08 09:26:54.316 00:00:10.366 TCP 23.104.0.1:52222 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:27:07.220 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:48836 10 6452 1 2025-09-08 09:23:25.341 00:05:00.798 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:27:54.718 00:00:10.374 TCP 23.104.0.1:46554 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:28:07.444 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:44258 10 6452 1 2025-09-08 09:24:25.338 00:05:00.803 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:28:55.131 00:00:10.327 TCP 23.104.0.1:55174 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:29:07.664 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:58208 10 6452 1 2025-09-08 09:29:57.413 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:29:57.552 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:29:55.495 00:00:10.367 TCP 23.104.0.1:59024 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:30:07.885 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:41422 10 6452 1 2025-09-08 09:30:55.899 00:00:10.373 TCP 23.104.0.1:57310 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:31:08.101 00:00:10.149 TCP 1.101.0.1:3000 -> 22.102.0.1:50206 10 6452 1 2025-09-08 09:31:56.315 00:00:10.362 TCP 23.104.0.1:58914 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:32:08.290 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:38518 10 6452 1 2025-09-08 09:32:56.713 00:00:10.371 TCP 23.104.0.1:41192 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:33:08.508 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:44384 10 6452 1 2025-09-08 09:29:25.343 00:05:00.799 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:33:57.113 00:00:10.367 TCP 23.104.0.1:36422 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:34:08.724 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:42666 10 6452 1 2025-09-08 09:30:25.339 00:05:00.804 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:34:57.488 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:34:57.494 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:34:57.516 00:00:10.364 TCP 23.104.0.1:57332 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:35:08.937 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:55700 10 6452 1 2025-09-08 09:35:57.919 00:00:10.332 TCP 23.104.0.1:60284 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:36:09.172 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:46440 10 6452 1 2025-09-08 09:36:58.288 00:00:10.367 TCP 23.104.0.1:42288 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:37:09.341 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:35718 10 6452 1 2025-09-08 09:37:58.689 00:00:10.366 TCP 23.104.0.1:34142 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:38:09.552 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:33156 10 6452 1 2025-09-08 09:38:59.108 00:00:10.367 TCP 23.104.0.1:42280 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:39:09.767 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:58914 10 6452 1 2025-09-08 09:35:25.342 00:05:00.801 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:39:57.781 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:39:57.688 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:39:59.517 00:00:10.369 TCP 23.104.0.1:52580 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:40:09.986 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:34230 10 6452 1 2025-09-08 09:36:25.341 00:05:00.806 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:40:59.927 00:00:10.383 TCP 23.104.0.1:55396 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:41:10.217 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:57576 10 6452 1 2025-09-08 09:42:00.347 00:00:10.321 TCP 23.104.0.1:53858 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:42:10.386 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:59956 10 6452 1 2025-09-08 09:43:00.709 00:00:10.333 TCP 23.104.0.1:60010 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:43:10.600 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:46882 10 6452 1 2025-09-08 09:44:01.109 00:00:10.369 TCP 23.104.0.1:51502 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:44:10.816 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:34528 10 6452 1 2025-09-08 09:44:57.587 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:44:57.665 00:00:00.025 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:45:01.519 00:00:10.363 TCP 23.104.0.1:53924 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:41:25.344 00:05:00.812 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:45:11.034 00:00:22.446 TCP 1.101.0.1:3000 -> 22.102.0.1:38962 10 6452 1 2025-09-08 09:46:01.927 00:00:10.403 TCP 23.104.0.1:37830 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:42:25.341 00:05:00.818 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:46:23.525 00:00:10.345 TCP 1.101.0.1:3000 -> 22.102.0.1:60908 10 6452 1 2025-09-08 09:47:02.368 00:00:10.366 TCP 23.104.0.1:58674 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:47:23.908 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:56066 10 6452 1 2025-09-08 09:48:02.774 00:00:10.367 TCP 23.104.0.1:47512 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:48:24.090 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:55434 10 6452 1 2025-09-08 09:49:03.182 00:00:12.524 TCP 23.104.0.1:45956 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:49:24.310 00:00:10.201 TCP 1.101.0.1:3000 -> 22.102.0.1:60554 10 6452 1 2025-09-08 09:49:57.838 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:49:57.950 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:50:05.747 00:00:10.365 TCP 23.104.0.1:37250 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:50:24.540 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:34406 10 6452 1 2025-09-08 09:51:06.149 00:00:10.363 TCP 23.104.0.1:34380 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:47:25.343 00:05:00.813 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:51:24.765 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:55854 10 6452 1 2025-09-08 09:52:06.548 00:00:10.365 TCP 23.104.0.1:47166 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:48:25.342 00:05:00.818 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:52:24.987 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:50176 10 6452 1 2025-09-08 09:53:06.953 00:00:10.360 TCP 23.104.0.1:55896 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:53:25.220 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:38136 10 6452 1 2025-09-08 09:54:07.353 00:00:10.380 TCP 23.104.0.1:45044 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:54:25.442 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:44968 10 6452 1 2025-09-08 09:54:57.979 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-08 09:54:58.024 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-08 09:55:07.763 00:00:10.379 TCP 23.104.0.1:41880 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:55:25.655 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:39250 10 6452 1 2025-09-08 09:56:08.178 00:00:10.368 TCP 23.104.0.1:41828 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:56:25.876 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:40168 10 6452 1 2025-09-08 09:57:08.584 00:00:10.367 TCP 23.104.0.1:54118 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:53:25.346 00:05:00.813 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-08 09:57:26.107 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:57816 10 6452 1 2025-09-08 09:58:08.985 00:00:10.364 TCP 23.104.0.1:46138 -> 1.101.0.1:3000 11 1507 1 2025-09-08 09:54:25.343 00:05:00.818 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-08 09:58:26.323 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:38172 10 6452 1 Summary: total flows: 163, total bytes: 497049, total packets: 1565, avg bps: 1097, avg pps: 0, avg bpp: 317 Time window: 2025-09-08 08:59:01 - 2025-09-08 09:59:26 Total flows processed: 163, passed: 163, Blocks skipped: 0, Bytes read: 17016 Sys: 0.0011s User: 0.0032s Wall: 0.0021s flows/second: 77355.9 Runtime: 0.0021s