Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-09-15 10:58:49.605 00:00:10.362 TCP 23.104.0.1:57162 -> 1.101.0.1:3000 11 1507 1 2025-09-15 10:59:07.302 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:42618 10 6452 1 2025-09-15 10:59:50.003 00:00:10.370 TCP 23.104.0.1:37824 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:00:07.519 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:40008 10 6452 1 2025-09-15 10:56:28.729 00:05:00.972 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:00:50.416 00:00:10.374 TCP 23.104.0.1:36880 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:01:07.740 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:43876 10 6452 1 2025-09-15 10:57:28.731 00:05:00.966 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:01:50.840 00:00:10.383 TCP 23.104.0.1:57516 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:02:07.950 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:60538 10 6452 1 2025-09-15 11:02:51.264 00:00:10.326 TCP 23.104.0.1:44076 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:03:08.175 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:44878 10 6452 1 2025-09-15 11:03:28.792 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:03:28.765 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:03:51.627 00:00:10.367 TCP 23.104.0.1:34496 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:04:08.395 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:47854 10 6452 1 2025-09-15 11:04:52.034 00:00:10.368 TCP 23.104.0.1:53638 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:05:08.610 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:44172 10 6452 1 2025-09-15 11:05:52.447 00:00:10.359 TCP 23.104.0.1:55764 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:06:08.821 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:43010 10 6452 1 2025-09-15 11:02:28.730 00:05:00.977 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:06:52.847 00:00:10.602 TCP 23.104.0.1:42646 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:07:09.047 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:54608 10 6452 1 2025-09-15 11:03:28.733 00:05:00.971 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:07:53.489 00:00:10.361 TCP 23.104.0.1:55082 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:08:09.258 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:37166 10 6452 1 2025-09-15 11:08:29.229 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:08:29.137 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:08:53.890 00:00:10.439 TCP 23.104.0.1:37158 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:09:09.468 00:00:13.593 TCP 1.101.0.1:3000 -> 22.102.0.1:48158 10 6452 1 2025-09-15 11:09:54.369 00:00:10.364 TCP 23.104.0.1:40622 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:10:13.113 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:49254 10 6452 1 2025-09-15 11:10:54.769 00:00:10.383 TCP 23.104.0.1:43000 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:11:13.339 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:43846 10 6452 1 2025-09-15 11:11:55.183 00:00:10.367 TCP 23.104.0.1:37302 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:12:13.567 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:38064 10 6452 1 2025-09-15 11:08:28.733 00:05:00.976 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:12:55.586 00:00:10.364 TCP 23.104.0.1:60970 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:13:29.156 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:09:28.736 00:05:00.970 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:13:13.788 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:36330 10 6452 1 2025-09-15 11:13:28.882 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:13:55.984 00:00:10.368 TCP 23.104.0.1:57292 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:14:14.008 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:33708 10 6452 1 2025-09-15 11:14:56.391 00:00:10.321 TCP 23.104.0.1:41628 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:15:14.224 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:39692 10 6452 1 2025-09-15 11:15:56.751 00:00:10.389 TCP 23.104.0.1:34772 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:16:14.442 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:58738 10 6452 1 2025-09-15 11:16:57.177 00:00:10.323 TCP 23.104.0.1:60958 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:17:14.662 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:45836 10 6452 1 2025-09-15 11:17:57.536 00:00:10.376 TCP 23.104.0.1:39096 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:18:14.878 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:35132 10 6452 1 2025-09-15 11:18:29.518 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:18:29.536 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:14:28.738 00:05:00.971 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:18:57.953 00:00:10.364 TCP 23.104.0.1:35862 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:19:15.108 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:54520 10 6452 1 2025-09-15 11:15:28.743 00:05:00.966 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:19:58.358 00:00:10.371 TCP 23.104.0.1:57442 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:20:15.325 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:36468 10 6452 1 2025-09-15 11:20:58.768 00:00:10.376 TCP 23.104.0.1:48514 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:21:15.545 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:50602 10 6452 1 2025-09-15 11:21:59.186 00:00:10.374 TCP 23.104.0.1:32898 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:22:15.759 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:57724 10 6452 1 2025-09-15 11:22:59.598 00:00:10.365 TCP 23.104.0.1:46866 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:23:29.312 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:23:29.211 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:23:15.929 00:00:21.827 TCP 1.101.0.1:3000 -> 22.102.0.1:50870 10 6452 1 2025-09-15 11:24:00.006 00:00:10.318 TCP 23.104.0.1:37412 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:20:28.741 00:05:00.970 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:24:27.800 00:00:10.211 TCP 1.101.0.1:3000 -> 22.102.0.1:51262 13 10407 1 2025-09-15 11:25:00.366 00:00:10.454 TCP 23.104.0.1:50378 -> 1.101.0.1:3000 15 1926 1 2025-09-15 11:21:28.744 00:05:00.965 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:25:28.080 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:41676 10 6452 1 2025-09-15 11:26:00.872 00:00:10.554 TCP 23.104.0.1:47944 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:26:28.301 00:00:10.201 TCP 1.101.0.1:3000 -> 22.102.0.1:54278 10 6452 1 2025-09-15 11:27:01.464 00:00:10.325 TCP 23.104.0.1:38812 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:27:28.533 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:35856 10 6452 1 2025-09-15 11:28:01.826 00:00:10.361 TCP 23.104.0.1:59970 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:28:29.273 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:28:29.357 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:28:28.740 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:52928 10 6452 1 2025-09-15 11:29:02.226 00:00:10.367 TCP 23.104.0.1:44584 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:29:28.952 00:00:10.168 TCP 1.101.0.1:3000 -> 22.102.0.1:36640 10 6452 1 2025-09-15 11:30:02.628 00:00:10.362 TCP 23.104.0.1:48772 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:26:28.745 00:05:00.968 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:30:29.160 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:57454 10 6452 1 2025-09-15 11:31:03.027 00:00:10.369 TCP 23.104.0.1:54538 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:27:28.746 00:05:00.964 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:31:29.376 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:48726 10 6452 1 2025-09-15 11:32:03.434 00:00:10.364 TCP 23.104.0.1:57864 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:32:29.586 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:33290 10 6452 1 2025-09-15 11:33:03.836 00:00:10.392 TCP 23.104.0.1:46106 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:33:29.251 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:33:29.379 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:33:29.793 00:00:10.198 TCP 1.101.0.1:3000 -> 22.102.0.1:60900 10 6452 1 2025-09-15 11:34:04.267 00:00:10.334 TCP 23.104.0.1:50286 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:34:30.039 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:46196 10 6452 1 2025-09-15 11:35:04.642 00:00:10.364 TCP 23.104.0.1:47354 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:35:30.252 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:42330 10 6452 1 2025-09-15 11:36:05.060 00:00:10.366 TCP 23.104.0.1:56214 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:32:28.744 00:05:00.968 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:36:30.465 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:40202 10 6452 1 2025-09-15 11:37:05.464 00:00:10.364 TCP 23.104.0.1:59042 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:33:28.746 00:05:00.964 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:37:30.671 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:44304 10 6452 1 2025-09-15 11:38:05.865 00:00:10.369 TCP 23.104.0.1:45470 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:38:29.257 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:38:29.493 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:38:30.887 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:58122 10 6452 1 2025-09-15 11:39:06.276 00:00:10.323 TCP 23.104.0.1:49136 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:39:31.112 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:48242 10 6452 1 2025-09-15 11:40:06.643 00:00:10.369 TCP 23.104.0.1:56044 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:40:31.287 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:33998 10 6452 1 2025-09-15 11:41:07.056 00:00:10.360 TCP 23.104.0.1:41986 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:41:31.507 00:00:10.128 TCP 1.101.0.1:3000 -> 22.102.0.1:44772 10 6452 1 2025-09-15 11:42:07.452 00:00:10.363 TCP 23.104.0.1:35706 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:38:28.745 00:05:00.968 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:42:31.675 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:51662 10 6452 1 2025-09-15 11:43:07.854 00:00:10.372 TCP 23.104.0.1:34328 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:43:29.647 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:39:28.748 00:05:00.962 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:43:29.686 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:43:31.887 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:40288 10 6452 1 2025-09-15 11:44:08.265 00:00:10.365 TCP 23.104.0.1:53300 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:44:32.076 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:37848 10 6452 1 2025-09-15 11:45:08.673 00:00:10.323 TCP 23.104.0.1:38486 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:45:32.314 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:34834 10 6452 1 2025-09-15 11:46:09.034 00:00:10.363 TCP 23.104.0.1:39440 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:46:32.536 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:37532 10 6452 1 2025-09-15 11:47:09.441 00:00:10.358 TCP 23.104.0.1:46772 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:47:32.758 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:46440 10 6452 1 2025-09-15 11:48:09.840 00:00:10.381 TCP 23.104.0.1:51260 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:48:29.757 00:00:00.020 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:48:29.619 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:44:28.746 00:05:00.968 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:48:33.000 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:35144 10 6452 1 2025-09-15 11:49:10.259 00:00:10.370 TCP 23.104.0.1:50954 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:45:28.749 00:05:00.965 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:49:33.226 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:59324 10 6452 1 2025-09-15 11:50:10.688 00:00:10.367 TCP 23.104.0.1:58444 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:50:33.438 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:50990 10 6452 1 2025-09-15 11:51:11.110 00:00:10.368 TCP 23.104.0.1:44616 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:51:33.646 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:34050 10 6452 1 2025-09-15 11:52:11.517 00:00:10.369 TCP 23.104.0.1:46136 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:52:33.853 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:43042 10 6452 1 2025-09-15 11:53:11.924 00:00:10.386 TCP 23.104.0.1:49738 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:53:29.910 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:53:29.729 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:53:34.084 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:38556 10 6452 1 2025-09-15 11:54:12.346 00:00:10.364 TCP 23.104.0.1:55802 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:50:28.748 00:05:00.969 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-09-15 11:54:34.294 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:49882 10 6452 1 2025-09-15 11:55:12.751 00:00:10.396 TCP 23.104.0.1:32890 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:51:28.751 00:05:00.964 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-09-15 11:55:34.510 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:37766 10 6452 1 2025-09-15 11:56:13.199 00:00:10.370 TCP 23.104.0.1:37912 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:56:34.720 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:49770 10 6452 1 2025-09-15 11:57:13.606 00:00:10.369 TCP 23.104.0.1:58740 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:57:34.935 00:00:10.161 TCP 1.101.0.1:3000 -> 22.102.0.1:33432 10 6452 1 2025-09-15 11:58:14.019 00:00:10.364 TCP 23.104.0.1:35458 -> 1.101.0.1:3000 11 1507 1 2025-09-15 11:58:29.984 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-09-15 11:58:29.908 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-09-15 11:58:35.134 00:00:10.683 TCP 1.101.0.1:3000 -> 22.102.0.1:52492 10 6452 1 Summary: total flows: 164, total bytes: 502722, total packets: 1579, avg bps: 1076, avg pps: 0, avg bpp: 318 Time window: 2025-09-15 10:56:28 - 2025-09-15 11:58:45 Total flows processed: 164, passed: 164, Blocks skipped: 0, Bytes read: 17120 Sys: 0.0028s User: 0.0028s Wall: 0.0025s flows/second: 64923.6 Runtime: 0.0025s