Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-10-16 08:58:58.580 00:00:10.363 TCP 23.104.0.1:53878 -> 1.101.0.1:3000 11 1507 1 2025-10-16 08:59:23.678 00:00:11.148 TCP 1.101.0.1:3000 -> 22.102.0.1:38808 10 6452 1 2025-10-16 08:59:58.981 00:00:10.361 TCP 23.104.0.1:50028 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:00:24.864 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:53446 10 6452 1 2025-10-16 08:56:43.046 00:05:02.565 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 08:56:43.043 00:05:02.570 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:00:59.379 00:00:10.364 TCP 23.104.0.1:58654 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:01:25.084 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:46126 10 6452 1 2025-10-16 09:01:59.778 00:00:10.367 TCP 23.104.0.1:44562 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:02:25.299 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:59224 10 6452 1 2025-10-16 09:03:00.184 00:00:10.366 TCP 23.104.0.1:49610 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:03:21.805 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:03:21.895 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:03:25.474 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:40164 10 6452 1 2025-10-16 09:04:00.587 00:00:10.324 TCP 23.104.0.1:37380 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:04:25.697 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:34954 10 6452 1 2025-10-16 09:05:00.946 00:00:10.374 TCP 23.104.0.1:37544 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:05:25.916 00:00:10.446 TCP 1.101.0.1:3000 -> 22.102.0.1:53158 10 6452 1 2025-10-16 09:06:01.357 00:00:10.329 TCP 23.104.0.1:40462 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:06:26.402 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:46488 10 6452 1 2025-10-16 09:02:43.046 00:05:02.565 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 09:02:43.044 00:05:02.570 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:07:01.720 00:00:10.373 TCP 23.104.0.1:46162 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:07:26.575 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:52964 10 6452 1 2025-10-16 09:08:02.130 00:00:10.814 TCP 23.104.0.1:48044 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:08:21.778 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:08:21.786 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:08:26.798 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:48492 10 6452 1 2025-10-16 09:09:02.985 00:00:10.371 TCP 23.104.0.1:38654 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:09:27.023 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:52602 10 6452 1 2025-10-16 09:10:03.394 00:00:10.371 TCP 23.104.0.1:53294 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:10:27.242 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:44742 10 6452 1 2025-10-16 09:11:03.803 00:00:10.368 TCP 23.104.0.1:54662 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:11:27.425 00:00:10.213 TCP 1.101.0.1:3000 -> 22.102.0.1:55152 12 10375 1 2025-10-16 09:12:04.204 00:00:10.439 TCP 23.104.0.1:40964 -> 1.101.0.1:3000 15 1926 1 2025-10-16 09:12:27.674 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:44870 10 6452 1 2025-10-16 09:08:43.051 00:05:02.573 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 09:08:43.050 00:05:02.577 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:13:04.692 00:00:10.371 TCP 23.104.0.1:60710 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:13:21.895 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:13:21.926 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:13:27.888 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:50816 10 6452 1 2025-10-16 09:14:05.106 00:00:10.325 TCP 23.104.0.1:59798 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:14:28.112 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:39384 10 6452 1 2025-10-16 09:15:05.470 00:00:10.363 TCP 23.104.0.1:33894 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:15:28.336 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:56378 10 6452 1 2025-10-16 09:16:05.868 00:00:10.376 TCP 23.104.0.1:50218 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:16:28.549 00:00:10.200 TCP 1.101.0.1:3000 -> 22.102.0.1:37484 12 10375 1 2025-10-16 09:17:06.283 00:00:10.444 TCP 23.104.0.1:59346 -> 1.101.0.1:3000 15 1926 1 2025-10-16 09:17:28.787 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:49578 10 6452 1 2025-10-16 09:18:21.919 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:18:21.886 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:18:06.762 00:00:10.373 TCP 23.104.0.1:56782 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:18:29.000 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:33918 10 6452 1 2025-10-16 09:14:43.053 00:05:02.575 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 09:14:43.050 00:05:02.581 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:19:07.185 00:00:10.329 TCP 23.104.0.1:37400 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:19:29.216 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:58254 10 6452 1 2025-10-16 09:20:07.557 00:00:10.359 TCP 23.104.0.1:58022 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:20:29.442 00:00:10.716 TCP 1.101.0.1:3000 -> 22.102.0.1:57366 10 6452 1 2025-10-16 09:21:07.965 00:00:10.370 TCP 23.104.0.1:44508 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:21:30.197 00:00:10.203 TCP 1.101.0.1:3000 -> 22.102.0.1:58372 12 10375 1 2025-10-16 09:22:08.371 00:00:10.445 TCP 23.104.0.1:40020 -> 1.101.0.1:3000 15 1926 1 2025-10-16 09:22:30.446 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:49954 10 6452 1 2025-10-16 09:23:08.857 00:00:10.374 TCP 23.104.0.1:34500 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:23:22.260 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:23:22.222 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:23:30.616 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:49018 10 6452 1 2025-10-16 09:24:09.268 00:00:10.366 TCP 23.104.0.1:59608 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:24:30.833 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:44636 10 6452 1 2025-10-16 09:20:43.051 00:05:02.581 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:20:43.054 00:05:02.575 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 09:25:09.672 00:00:10.648 TCP 23.104.0.1:44814 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:25:31.009 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:59254 10 6452 1 2025-10-16 09:26:10.353 00:00:10.327 TCP 23.104.0.1:36152 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:26:31.228 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:49364 10 6452 1 2025-10-16 09:27:10.719 00:00:10.380 TCP 23.104.0.1:47608 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:27:31.453 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:48986 10 6452 1 2025-10-16 09:28:11.136 00:00:10.365 TCP 23.104.0.1:57698 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:28:22.090 00:00:00.032 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:28:22.280 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:28:31.667 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:38492 10 6452 1 2025-10-16 09:29:11.533 00:00:10.330 TCP 23.104.0.1:38798 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:29:31.894 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:46236 10 6452 1 2025-10-16 09:30:11.895 00:00:10.371 TCP 23.104.0.1:33556 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:26:43.056 00:05:02.574 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 09:30:32.123 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:42272 10 6452 1 2025-10-16 09:26:43.053 00:05:02.579 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:31:12.303 00:00:10.363 TCP 23.104.0.1:44310 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:31:32.299 00:00:10.220 TCP 1.101.0.1:3000 -> 22.102.0.1:33348 10 6452 1 2025-10-16 09:32:12.701 00:00:10.367 TCP 23.104.0.1:60452 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:32:32.583 00:00:10.777 TCP 1.101.0.1:3000 -> 22.102.0.1:53254 10 6452 1 2025-10-16 09:33:21.993 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:33:13.107 00:00:10.366 TCP 23.104.0.1:49826 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:33:22.418 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:33:33.400 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:39214 10 6452 1 2025-10-16 09:34:13.513 00:00:10.369 TCP 23.104.0.1:35420 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:34:33.605 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:47286 10 6452 1 2025-10-16 09:35:13.920 00:00:10.380 TCP 23.104.0.1:34640 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:35:33.819 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:48760 10 6452 1 2025-10-16 09:36:14.338 00:00:10.321 TCP 23.104.0.1:45434 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:36:34.033 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:57504 10 6452 1 2025-10-16 09:32:43.056 00:05:02.578 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:32:43.058 00:05:02.573 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 09:37:14.698 00:00:10.366 TCP 23.104.0.1:54734 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:37:34.249 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:33482 10 6452 1 2025-10-16 09:38:22.448 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:38:22.444 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:38:15.108 00:00:10.375 TCP 23.104.0.1:43234 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:38:34.465 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:48160 10 6452 1 2025-10-16 09:39:15.522 00:00:10.366 TCP 23.104.0.1:54120 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:39:34.681 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:51228 10 6452 1 2025-10-16 09:40:15.928 00:00:10.382 TCP 23.104.0.1:46574 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:40:34.897 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:43312 10 6452 1 2025-10-16 09:41:16.354 00:00:10.641 TCP 23.104.0.1:43130 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:41:35.113 00:00:12.201 TCP 1.101.0.1:3000 -> 22.102.0.1:50384 10 6452 1 2025-10-16 09:42:17.034 00:00:10.361 TCP 23.104.0.1:45826 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:38:43.057 00:05:02.578 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:38:43.060 00:05:02.573 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 09:42:37.363 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:45518 10 6452 1 2025-10-16 09:43:22.476 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:43:22.384 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:43:17.430 00:00:10.369 TCP 23.104.0.1:41608 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:43:37.584 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:45532 10 6452 1 2025-10-16 09:44:17.841 00:00:10.346 TCP 23.104.0.1:41496 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:44:37.800 00:00:10.698 TCP 1.101.0.1:3000 -> 22.102.0.1:57128 10 6452 1 2025-10-16 09:45:18.230 00:00:10.366 TCP 23.104.0.1:43208 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:45:38.538 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:56574 10 6452 1 2025-10-16 09:46:18.634 00:00:10.325 TCP 23.104.0.1:59964 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:46:38.751 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:34660 10 6452 1 2025-10-16 09:47:18.995 00:00:10.362 TCP 23.104.0.1:36114 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:47:38.925 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:38538 10 6452 1 2025-10-16 09:48:22.631 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:48:22.552 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:48:19.399 00:00:10.367 TCP 23.104.0.1:47144 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:44:43.060 00:05:02.574 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 09:44:43.057 00:05:02.579 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:48:39.133 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:46800 10 6452 1 2025-10-16 09:49:19.806 00:00:10.363 TCP 23.104.0.1:34620 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:49:39.353 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:36970 10 6452 1 2025-10-16 09:50:20.213 00:00:10.330 TCP 23.104.0.1:52978 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:50:39.569 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:56166 10 6452 1 2025-10-16 09:51:20.585 00:00:10.367 TCP 23.104.0.1:46142 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:51:39.784 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:56778 10 6452 1 2025-10-16 09:52:20.991 00:00:10.370 TCP 23.104.0.1:50498 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:52:40.002 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:53340 10 6452 1 2025-10-16 09:53:22.638 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:53:22.685 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:53:21.407 00:00:10.359 TCP 23.104.0.1:43184 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:53:40.216 00:00:10.165 TCP 1.101.0.1:3000 -> 22.102.0.1:38062 10 6452 1 2025-10-16 09:54:21.806 00:00:10.331 TCP 23.104.0.1:38206 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:50:43.061 00:05:02.573 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-16 09:50:43.059 00:05:02.578 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-16 09:54:40.424 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:50730 10 6452 1 2025-10-16 09:55:22.179 00:00:10.368 TCP 23.104.0.1:38794 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:55:40.633 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:34026 10 6452 1 2025-10-16 09:56:22.587 00:00:10.365 TCP 23.104.0.1:40120 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:56:40.855 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:52434 10 6452 1 2025-10-16 09:57:22.992 00:00:10.320 TCP 23.104.0.1:45988 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:57:41.087 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:54710 10 6452 1 2025-10-16 09:58:22.923 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-16 09:58:22.762 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-16 09:58:23.350 00:00:10.367 TCP 23.104.0.1:54414 -> 1.101.0.1:3000 11 1507 1 2025-10-16 09:58:41.296 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:44162 10 6452 1 Summary: total flows: 164, total bytes: 511374, total packets: 1590, avg bps: 1097, avg pps: 0, avg bpp: 321 Time window: 2025-10-16 08:56:43 - 2025-10-16 09:58:51 Total flows processed: 164, passed: 164, Blocks skipped: 0, Bytes read: 17120 Sys: 0.0040s User: 0.0020s Wall: 0.0025s flows/second: 65862.3 Runtime: 0.0025s