Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-10-13 15:58:54.752 00:00:10.382 TCP 23.104.0.1:33362 -> 1.101.0.1:3000 11 1507 1 2025-10-13 15:59:40.742 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:51460 10 6452 1 2025-10-13 15:59:55.172 00:00:10.379 TCP 23.104.0.1:58720 -> 1.101.0.1:3000 11 1507 1 2025-10-13 15:56:41.755 00:05:02.436 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 15:56:41.752 00:05:02.441 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:00:40.973 00:00:10.157 TCP 1.101.0.1:3000 -> 22.102.0.1:59198 10 6452 1 2025-10-13 16:00:55.588 00:00:10.365 TCP 23.104.0.1:45392 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:01:41.172 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:49306 10 6452 1 2025-10-13 16:02:03.408 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:01:55.988 00:00:10.364 TCP 23.104.0.1:51952 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:02:03.432 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:02:41.406 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:54124 10 6452 1 2025-10-13 16:02:56.394 00:00:10.329 TCP 23.104.0.1:39086 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:03:41.620 00:00:10.763 TCP 1.101.0.1:3000 -> 22.102.0.1:49866 10 6452 1 2025-10-13 16:03:56.768 00:00:10.331 TCP 23.104.0.1:47796 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:04:42.418 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:33336 10 6452 1 2025-10-13 16:04:57.137 00:00:10.361 TCP 23.104.0.1:34146 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:05:42.642 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:44914 10 6452 1 2025-10-13 16:05:57.539 00:00:10.366 TCP 23.104.0.1:38410 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:02:41.753 00:05:02.441 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:02:41.756 00:05:02.436 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 16:06:42.857 00:00:10.741 TCP 1.101.0.1:3000 -> 22.102.0.1:46892 10 6452 1 2025-10-13 16:07:03.587 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:07:03.756 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:06:57.945 00:00:10.373 TCP 23.104.0.1:54078 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:07:43.640 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:46590 10 6452 1 2025-10-13 16:07:58.355 00:00:10.368 TCP 23.104.0.1:59180 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:08:43.853 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:40234 10 6452 1 2025-10-13 16:08:58.755 00:00:10.376 TCP 23.104.0.1:52392 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:09:44.081 00:00:10.389 TCP 1.101.0.1:3000 -> 22.102.0.1:55668 10 6452 1 2025-10-13 16:09:59.166 00:00:10.358 TCP 23.104.0.1:44764 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:10:44.510 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:34592 12 6556 1 2025-10-13 16:10:59.564 00:00:10.362 TCP 23.104.0.1:50852 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:11:44.721 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:40584 10 6452 1 2025-10-13 16:12:03.647 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:12:03.536 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:11:59.966 00:00:10.366 TCP 23.104.0.1:59582 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:08:41.755 00:05:02.440 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:08:41.757 00:05:02.435 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 16:12:44.938 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:36104 10 6452 1 2025-10-13 16:13:00.367 00:00:10.369 TCP 23.104.0.1:37686 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:13:45.173 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:36308 10 6452 1 2025-10-13 16:14:00.778 00:00:10.329 TCP 23.104.0.1:44982 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:14:45.390 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:58266 10 6452 1 2025-10-13 16:15:01.145 00:00:10.371 TCP 23.104.0.1:46252 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:15:45.599 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:60986 10 6452 1 2025-10-13 16:16:01.559 00:00:10.451 TCP 23.104.0.1:50294 -> 1.101.0.1:3000 15 1926 1 2025-10-13 16:16:45.811 00:00:10.156 TCP 1.101.0.1:3000 -> 22.102.0.1:53728 12 10369 1 2025-10-13 16:17:03.618 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:17:03.960 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:17:02.061 00:00:10.366 TCP 23.104.0.1:36966 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:17:46.012 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:50588 10 6452 1 2025-10-13 16:18:02.469 00:00:10.325 TCP 23.104.0.1:56760 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:14:41.758 00:05:02.435 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 16:14:41.755 00:05:02.441 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:18:46.187 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:56322 10 6452 1 2025-10-13 16:19:02.832 00:00:10.389 TCP 23.104.0.1:47342 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:19:46.398 00:00:10.124 TCP 1.101.0.1:3000 -> 22.102.0.1:41140 10 6452 1 2025-10-13 16:20:03.257 00:00:10.362 TCP 23.104.0.1:50216 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:20:46.566 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:53772 10 6452 1 2025-10-13 16:21:03.657 00:00:10.649 TCP 23.104.0.1:33870 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:21:46.787 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:43908 10 6452 1 2025-10-13 16:22:03.525 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:22:03.690 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:22:04.340 00:00:10.366 TCP 23.104.0.1:49862 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:22:47.005 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:44580 10 6452 1 2025-10-13 16:23:04.739 00:00:10.367 TCP 23.104.0.1:48388 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:23:47.228 00:00:10.151 TCP 1.101.0.1:3000 -> 22.102.0.1:53036 10 6452 1 2025-10-13 16:24:05.144 00:00:10.377 TCP 23.104.0.1:50562 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:20:41.757 00:05:02.440 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:20:41.759 00:05:02.436 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 16:24:47.419 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:49526 10 6452 1 2025-10-13 16:25:05.558 00:00:10.361 TCP 23.104.0.1:58088 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:25:47.628 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:59642 10 6452 1 2025-10-13 16:26:05.957 00:00:10.364 TCP 23.104.0.1:53636 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:26:47.841 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:57808 10 6452 1 2025-10-13 16:27:03.778 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:27:04.124 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:27:06.362 00:00:10.367 TCP 23.104.0.1:44372 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:27:48.084 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:34458 10 6452 1 2025-10-13 16:28:06.766 00:00:10.334 TCP 23.104.0.1:55496 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:28:48.303 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:50742 10 6452 1 2025-10-13 16:29:07.141 00:00:10.370 TCP 23.104.0.1:55462 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:29:48.527 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:33002 10 6452 1 2025-10-13 16:30:07.549 00:00:10.363 TCP 23.104.0.1:51472 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:26:41.760 00:05:02.436 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 16:26:41.759 00:05:02.441 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:30:48.738 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:35916 10 6452 1 2025-10-13 16:31:07.949 00:00:10.736 TCP 23.104.0.1:50012 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:31:48.948 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:49686 10 6452 1 2025-10-13 16:32:04.557 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:32:04.476 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:32:08.727 00:00:10.368 TCP 23.104.0.1:46166 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:32:49.177 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:59324 10 6452 1 2025-10-13 16:33:09.133 00:00:10.370 TCP 23.104.0.1:54522 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:33:49.391 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:38930 10 6452 1 2025-10-13 16:34:09.546 00:00:10.365 TCP 23.104.0.1:45130 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:34:49.565 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:39210 10 6452 1 2025-10-13 16:35:09.948 00:00:10.375 TCP 23.104.0.1:45874 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:35:49.779 00:00:10.214 TCP 1.101.0.1:3000 -> 22.102.0.1:47244 12 10375 1 2025-10-13 16:36:10.361 00:00:10.441 TCP 23.104.0.1:46650 -> 1.101.0.1:3000 15 1926 1 2025-10-13 16:32:41.758 00:05:02.443 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:32:41.762 00:05:02.437 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 16:36:50.037 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:36330 10 6452 1 2025-10-13 16:37:04.162 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:37:04.107 00:00:00.033 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:37:10.847 00:00:10.388 TCP 23.104.0.1:41748 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:37:50.253 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:58504 10 6452 1 2025-10-13 16:38:11.263 00:00:10.364 TCP 23.104.0.1:35460 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:38:50.460 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:47410 10 6452 1 2025-10-13 16:39:11.666 00:00:10.365 TCP 23.104.0.1:43244 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:39:50.679 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:34720 10 6452 1 2025-10-13 16:40:12.090 00:00:10.363 TCP 23.104.0.1:33474 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:40:50.906 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:45636 10 6452 1 2025-10-13 16:41:12.492 00:00:10.367 TCP 23.104.0.1:48324 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:41:51.129 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:42150 10 6452 1 2025-10-13 16:42:04.423 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:42:04.176 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:42:12.889 00:00:10.371 TCP 23.104.0.1:57902 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:38:41.760 00:05:02.442 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:38:41.764 00:05:02.436 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 16:42:51.351 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:36932 10 6452 1 2025-10-13 16:43:13.304 00:00:10.364 TCP 23.104.0.1:46978 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:43:51.562 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:43134 10 6452 1 2025-10-13 16:44:13.704 00:00:10.370 TCP 23.104.0.1:34140 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:44:51.777 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:45224 10 6452 1 2025-10-13 16:45:14.113 00:00:10.324 TCP 23.104.0.1:38640 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:45:51.998 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:47988 10 6452 1 2025-10-13 16:46:14.479 00:00:10.373 TCP 23.104.0.1:41984 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:46:52.213 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:59678 10 6452 1 2025-10-13 16:47:04.463 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:47:04.330 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:47:14.892 00:00:10.370 TCP 23.104.0.1:58796 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:47:52.432 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:58986 10 6452 1 2025-10-13 16:48:15.302 00:00:10.361 TCP 23.104.0.1:47346 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:44:41.764 00:05:02.441 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:44:41.765 00:05:02.436 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 16:48:52.656 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:36192 10 6452 1 2025-10-13 16:49:15.700 00:00:10.365 TCP 23.104.0.1:60152 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:49:52.877 00:00:10.203 TCP 1.101.0.1:3000 -> 22.102.0.1:44114 10 6452 1 2025-10-13 16:50:16.108 00:00:10.362 TCP 23.104.0.1:49678 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:50:53.118 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:60580 10 6452 1 2025-10-13 16:51:16.510 00:00:10.367 TCP 23.104.0.1:56532 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:52:04.440 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:51:53.335 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:40116 10 6452 1 2025-10-13 16:52:04.485 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:52:16.916 00:00:10.367 TCP 23.104.0.1:48208 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:52:53.558 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:38468 10 6452 1 2025-10-13 16:53:17.325 00:00:10.361 TCP 23.104.0.1:54330 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:53:53.781 00:00:10.632 TCP 1.101.0.1:3000 -> 22.102.0.1:50904 10 6452 1 2025-10-13 16:54:17.719 00:00:10.376 TCP 23.104.0.1:41094 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:50:41.767 00:05:02.436 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-13 16:50:41.764 00:05:02.441 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-13 16:54:54.453 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:55054 12 6556 1 2025-10-13 16:55:18.133 00:00:10.324 TCP 23.104.0.1:34080 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:55:54.677 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:51958 10 6452 1 2025-10-13 16:56:18.499 00:00:10.367 TCP 23.104.0.1:50582 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:56:54.899 00:00:10.144 TCP 1.101.0.1:3000 -> 22.102.0.1:42668 10 6452 1 2025-10-13 16:57:04.372 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-13 16:57:04.525 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-13 16:57:18.903 00:00:10.371 TCP 23.104.0.1:52832 -> 1.101.0.1:3000 11 1507 1 2025-10-13 16:57:55.085 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:33798 10 6452 1 2025-10-13 16:58:19.311 00:00:10.364 TCP 23.104.0.1:59100 -> 1.101.0.1:3000 11 1507 1 Summary: total flows: 163, total bytes: 500782, total packets: 1578, avg bps: 1080, avg pps: 0, avg bpp: 317 Time window: 2025-10-13 15:56:41 - 2025-10-13 16:58:29 Total flows processed: 163, passed: 163, Blocks skipped: 0, Bytes read: 17016 Sys: 0.0018s User: 0.0036s Wall: 0.0022s flows/second: 73592.2 Runtime: 0.0022s