Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-10-15 11:58:49.933 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:38298 10 6452 1 2025-10-15 11:59:32.575 00:00:10.320 TCP 23.104.0.1:42700 -> 1.101.0.1:3000 11 1507 1 2025-10-15 11:59:50.180 00:00:18.353 TCP 1.101.0.1:3000 -> 22.102.0.1:41046 10 6452 1 2025-10-15 11:56:42.598 00:05:02.537 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:00:32.935 00:00:10.390 TCP 23.104.0.1:50270 -> 1.101.0.1:3000 11 1507 1 2025-10-15 11:56:42.602 00:05:02.532 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:00:58.580 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:59196 10 6452 1 2025-10-15 12:01:33.373 00:00:10.363 TCP 23.104.0.1:45234 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:01:58.793 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:39726 10 6452 1 2025-10-15 12:02:33.782 00:00:10.395 TCP 23.104.0.1:48430 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:02:56.444 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:02:56.252 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:02:59.008 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:41800 10 6452 1 2025-10-15 12:03:34.215 00:00:10.364 TCP 23.104.0.1:37838 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:03:59.225 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:33214 10 6452 1 2025-10-15 12:04:34.618 00:00:10.326 TCP 23.104.0.1:43388 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:04:59.402 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:52446 10 6452 1 2025-10-15 12:05:34.981 00:00:10.368 TCP 23.104.0.1:39216 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:05:59.577 00:00:10.594 TCP 1.101.0.1:3000 -> 22.102.0.1:56334 10 6452 1 2025-10-15 12:02:42.600 00:05:02.536 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:06:35.385 00:00:10.323 TCP 23.104.0.1:47052 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:02:42.602 00:05:02.531 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:07:00.214 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:49786 10 6452 1 2025-10-15 12:07:35.750 00:00:10.361 TCP 23.104.0.1:36008 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:07:56.516 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:07:56.484 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:08:00.423 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:50050 10 6452 1 2025-10-15 12:08:36.151 00:00:10.365 TCP 23.104.0.1:46238 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:09:00.635 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:32982 10 6452 1 2025-10-15 12:09:36.559 00:00:10.329 TCP 23.104.0.1:42260 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:10:00.804 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:45832 10 6452 1 2025-10-15 12:10:36.928 00:00:10.385 TCP 23.104.0.1:59802 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:11:00.983 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:33146 10 6452 1 2025-10-15 12:11:37.351 00:00:10.320 TCP 23.104.0.1:38242 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:12:01.218 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:33212 10 6452 1 2025-10-15 12:08:42.606 00:05:02.532 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:08:42.608 00:05:02.528 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:12:37.714 00:00:10.367 TCP 23.104.0.1:48030 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:12:56.767 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:12:56.709 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:13:01.398 00:00:10.604 TCP 1.101.0.1:3000 -> 22.102.0.1:58450 10 6452 1 2025-10-15 12:13:38.120 00:00:10.364 TCP 23.104.0.1:41000 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:14:02.066 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:44012 10 6452 1 2025-10-15 12:14:38.528 00:00:10.368 TCP 23.104.0.1:42276 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:15:02.279 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:40660 10 6452 1 2025-10-15 12:15:38.934 00:00:10.370 TCP 23.104.0.1:55796 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:16:02.490 00:00:10.203 TCP 1.101.0.1:3000 -> 22.102.0.1:56672 12 10375 1 2025-10-15 12:16:39.354 00:00:10.441 TCP 23.104.0.1:35618 -> 1.101.0.1:3000 15 1926 1 2025-10-15 12:17:02.733 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:57478 10 6452 1 2025-10-15 12:17:39.834 00:00:10.380 TCP 23.104.0.1:40458 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:17:56.656 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:17:56.730 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:18:02.899 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:54998 10 6452 1 2025-10-15 12:14:42.609 00:05:02.529 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:14:42.606 00:05:02.535 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:18:40.255 00:00:10.366 TCP 23.104.0.1:41478 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:19:03.085 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:38958 10 6452 1 2025-10-15 12:19:40.658 00:00:10.364 TCP 23.104.0.1:60814 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:20:03.298 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:55802 10 6452 1 2025-10-15 12:20:41.083 00:00:10.360 TCP 23.104.0.1:33240 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:21:03.473 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:47988 10 6452 1 2025-10-15 12:21:41.485 00:00:10.361 TCP 23.104.0.1:40758 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:22:03.703 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:52020 10 6452 1 2025-10-15 12:22:56.855 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:22:56.857 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:22:41.887 00:00:10.369 TCP 23.104.0.1:43010 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:23:03.874 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:60244 10 6452 1 2025-10-15 12:23:42.294 00:00:10.366 TCP 23.104.0.1:41818 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:24:04.103 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:52924 10 6452 1 2025-10-15 12:20:42.609 00:05:02.529 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:20:42.608 00:05:02.534 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:24:42.701 00:00:10.326 TCP 23.104.0.1:60592 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:25:04.315 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:47902 10 6452 1 2025-10-15 12:25:43.092 00:00:10.366 TCP 23.104.0.1:35786 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:26:04.545 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:37228 10 6452 1 2025-10-15 12:26:43.499 00:00:10.333 TCP 23.104.0.1:54860 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:27:04.756 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:53574 10 6452 1 2025-10-15 12:27:56.895 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:27:43.875 00:00:10.382 TCP 23.104.0.1:46828 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:27:56.817 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:28:04.967 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:35648 10 6452 1 2025-10-15 12:28:44.294 00:00:10.360 TCP 23.104.0.1:34538 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:29:05.190 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:33844 10 6452 1 2025-10-15 12:29:44.692 00:00:10.327 TCP 23.104.0.1:52612 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:30:05.401 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:51070 10 6452 1 2025-10-15 12:26:42.610 00:05:02.534 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:26:42.612 00:05:02.529 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:30:45.068 00:00:10.361 TCP 23.104.0.1:41448 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:31:05.613 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:45006 10 6452 1 2025-10-15 12:31:45.472 00:00:10.360 TCP 23.104.0.1:35614 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:32:05.788 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:38430 10 6452 1 2025-10-15 12:32:45.869 00:00:10.367 TCP 23.104.0.1:54644 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:32:56.849 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:32:57.046 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:33:05.997 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:45224 10 6452 1 2025-10-15 12:33:46.277 00:00:10.370 TCP 23.104.0.1:49694 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:34:06.218 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:48648 10 6452 1 2025-10-15 12:34:46.686 00:00:10.625 TCP 23.104.0.1:54340 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:35:06.435 00:00:10.142 TCP 1.101.0.1:3000 -> 22.102.0.1:33640 10 6452 1 2025-10-15 12:35:47.356 00:00:10.323 TCP 23.104.0.1:37922 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:36:06.617 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:36174 10 6452 1 2025-10-15 12:32:42.610 00:05:02.535 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:32:42.613 00:05:02.530 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:36:47.719 00:00:10.372 TCP 23.104.0.1:46908 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:37:06.787 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:58188 10 6452 1 2025-10-15 12:37:56.913 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:37:48.130 00:00:10.365 TCP 23.104.0.1:57196 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:37:56.995 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:38:07.006 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:59130 10 6452 1 2025-10-15 12:38:48.536 00:00:10.366 TCP 23.104.0.1:53860 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:39:07.176 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:35670 10 6452 1 2025-10-15 12:39:48.938 00:00:10.373 TCP 23.104.0.1:39266 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:40:07.393 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:59348 10 6452 1 2025-10-15 12:40:49.351 00:00:10.363 TCP 23.104.0.1:50678 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:41:07.607 00:00:10.190 TCP 1.101.0.1:3000 -> 22.102.0.1:52976 10 6452 1 2025-10-15 12:41:49.754 00:00:10.379 TCP 23.104.0.1:41818 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:42:07.833 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:56980 10 6452 1 2025-10-15 12:38:42.614 00:05:02.537 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:38:42.617 00:05:02.532 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:42:57.166 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:42:50.172 00:00:10.328 TCP 23.104.0.1:46118 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:42:57.189 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:43:08.069 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:36110 10 6452 1 2025-10-15 12:43:50.539 00:00:10.360 TCP 23.104.0.1:35864 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:44:08.283 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:52008 10 6452 1 2025-10-15 12:44:50.937 00:00:10.334 TCP 23.104.0.1:51072 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:45:08.458 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:45214 10 6452 1 2025-10-15 12:45:51.309 00:00:10.362 TCP 23.104.0.1:47036 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:46:08.673 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:54518 10 6452 1 2025-10-15 12:46:51.710 00:00:10.377 TCP 23.104.0.1:44538 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:47:08.887 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:43236 10 6452 1 2025-10-15 12:47:57.309 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:47:57.090 00:00:00.046 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:47:52.125 00:00:10.364 TCP 23.104.0.1:51036 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:48:09.113 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:59334 10 6452 1 2025-10-15 12:44:42.618 00:05:02.532 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:44:42.616 00:05:02.537 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:48:52.531 00:00:10.364 TCP 23.104.0.1:33504 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:49:09.280 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:56594 10 6452 1 2025-10-15 12:49:52.929 00:00:10.340 TCP 23.104.0.1:54344 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:50:09.494 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:41174 10 6452 1 2025-10-15 12:50:53.306 00:00:10.379 TCP 23.104.0.1:50716 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:51:09.707 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:47584 10 6452 1 2025-10-15 12:51:53.724 00:00:10.333 TCP 23.104.0.1:33866 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:52:09.922 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:58952 10 6452 1 2025-10-15 12:52:57.558 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:52:57.558 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:52:54.106 00:00:10.371 TCP 23.104.0.1:37434 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:53:10.143 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:34928 10 6452 1 2025-10-15 12:53:54.513 00:00:10.326 TCP 23.104.0.1:34034 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:54:10.356 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:43032 10 6452 1 2025-10-15 12:50:42.619 00:05:02.537 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-15 12:50:42.620 00:05:02.532 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-15 12:54:54.873 00:00:10.367 TCP 23.104.0.1:39790 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:55:10.538 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:38508 10 6452 1 2025-10-15 12:55:55.279 00:00:10.446 TCP 23.104.0.1:47718 -> 1.101.0.1:3000 15 1926 1 2025-10-15 12:56:10.748 00:00:10.161 TCP 1.101.0.1:3000 -> 22.102.0.1:59558 12 10375 1 2025-10-15 12:56:55.761 00:00:10.333 TCP 23.104.0.1:59046 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:57:10.951 00:00:10.190 TCP 1.101.0.1:3000 -> 22.102.0.1:41470 10 6452 1 2025-10-15 12:57:57.607 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-15 12:57:57.597 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-15 12:57:56.139 00:00:10.368 TCP 23.104.0.1:39710 -> 1.101.0.1:3000 11 1507 1 2025-10-15 12:58:11.180 00:00:10.237 TCP 1.101.0.1:3000 -> 22.102.0.1:54466 10 6452 1 Summary: total flows: 163, total bytes: 505525, total packets: 1573, avg bps: 1093, avg pps: 0, avg bpp: 321 Time window: 2025-10-15 11:56:42 - 2025-10-15 12:58:21 Total flows processed: 163, passed: 163, Blocks skipped: 0, Bytes read: 17016 Sys: 0.0033s User: 0.0008s Wall: 0.0020s flows/second: 82162.2 Runtime: 0.0020s