Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-10-18 06:59:16.818 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 06:59:17.044 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 06:59:26.214 00:00:10.330 TCP 23.104.0.1:42202 -> 1.101.0.1:3000 11 1507 1 2025-10-18 06:59:41.617 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:33858 10 6452 1 2025-10-18 07:00:26.584 00:00:10.366 TCP 23.104.0.1:45130 -> 1.101.0.1:3000 11 1507 1 2025-10-18 06:56:44.051 00:05:02.525 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:00:41.855 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:51634 10 6452 1 2025-10-18 06:56:44.049 00:05:02.530 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:01:26.986 00:00:10.369 TCP 23.104.0.1:51786 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:01:42.038 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:49546 10 6452 1 2025-10-18 07:02:27.397 00:00:10.379 TCP 23.104.0.1:56018 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:02:42.253 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:55008 10 6452 1 2025-10-18 07:03:27.815 00:00:18.551 TCP 23.104.0.1:46862 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:03:42.424 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:35614 10 6452 1 2025-10-18 07:04:17.044 00:00:00.028 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:04:17.287 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:04:36.404 00:00:10.359 TCP 23.104.0.1:43394 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:04:42.590 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:43032 10 6452 1 2025-10-18 07:05:36.803 00:00:10.362 TCP 23.104.0.1:51332 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:05:42.763 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:58008 10 6452 1 2025-10-18 07:02:44.056 00:05:02.522 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:02:44.053 00:05:02.526 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:06:37.207 00:00:10.367 TCP 23.104.0.1:35774 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:06:42.983 00:00:10.158 TCP 1.101.0.1:3000 -> 22.102.0.1:35650 10 6452 1 2025-10-18 07:07:37.612 00:00:10.369 TCP 23.104.0.1:42312 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:07:43.182 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:49080 10 6452 1 2025-10-18 07:08:38.019 00:00:10.360 TCP 23.104.0.1:40666 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:08:43.395 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:52820 10 6452 1 2025-10-18 07:09:17.061 00:00:00.051 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:09:17.405 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:09:38.422 00:00:10.368 TCP 23.104.0.1:36282 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:09:43.602 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:58188 10 6452 1 2025-10-18 07:10:38.822 00:00:10.363 TCP 23.104.0.1:52370 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:10:43.814 00:00:10.656 TCP 1.101.0.1:3000 -> 22.102.0.1:45144 10 6452 1 2025-10-18 07:11:39.227 00:00:10.364 TCP 23.104.0.1:59388 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:11:44.510 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:43882 10 6452 1 2025-10-18 07:12:39.631 00:00:10.363 TCP 23.104.0.1:41714 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:08:44.058 00:05:02.522 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:08:44.055 00:05:02.527 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:12:44.733 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:49350 10 6452 1 2025-10-18 07:13:40.032 00:00:10.363 TCP 23.104.0.1:42634 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:13:44.945 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:54752 10 6452 1 2025-10-18 07:14:17.247 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:14:17.475 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:14:40.427 00:00:10.363 TCP 23.104.0.1:39710 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:14:45.177 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:48222 10 6452 1 2025-10-18 07:15:40.830 00:00:10.377 TCP 23.104.0.1:36274 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:15:45.395 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:33088 10 6452 1 2025-10-18 07:16:41.246 00:00:10.367 TCP 23.104.0.1:38146 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:16:45.612 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:35412 10 6452 1 2025-10-18 07:17:45.828 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:34580 10 6452 1 2025-10-18 07:17:41.651 00:00:10.371 TCP 23.104.0.1:35780 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:14:44.055 00:05:02.527 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:14:44.057 00:05:02.522 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:18:46.074 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:50960 10 6452 1 2025-10-18 07:18:42.093 00:00:10.359 TCP 23.104.0.1:48612 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:19:17.260 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:19:17.317 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:19:42.493 00:00:10.369 TCP 23.104.0.1:35332 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:19:46.283 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:36202 10 6452 1 2025-10-18 07:20:46.506 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:48454 10 6452 1 2025-10-18 07:20:42.899 00:00:10.377 TCP 23.104.0.1:44894 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:21:43.316 00:00:10.323 TCP 23.104.0.1:40498 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:21:46.728 00:00:10.891 TCP 1.101.0.1:3000 -> 22.102.0.1:38308 10 6452 1 2025-10-18 07:22:43.687 00:00:10.345 TCP 23.104.0.1:36570 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:22:47.656 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:36396 10 6452 1 2025-10-18 07:23:47.866 00:00:12.782 TCP 1.101.0.1:3000 -> 22.102.0.1:45528 10 6452 1 2025-10-18 07:23:44.101 00:00:16.605 TCP 23.104.0.1:45636 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:24:17.383 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:24:17.504 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:20:44.058 00:05:02.523 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:20:44.055 00:05:02.528 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:24:50.707 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:55986 10 6452 1 2025-10-18 07:24:50.778 00:00:10.365 TCP 23.104.0.1:40294 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:25:50.917 00:00:10.168 TCP 1.101.0.1:3000 -> 22.102.0.1:44522 10 6452 1 2025-10-18 07:25:51.184 00:00:10.360 TCP 23.104.0.1:57190 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:26:51.584 00:00:10.369 TCP 23.104.0.1:36888 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:26:51.125 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:36790 10 6452 1 2025-10-18 07:27:51.341 00:00:10.189 TCP 1.101.0.1:3000 -> 22.102.0.1:38316 10 6452 1 2025-10-18 07:27:51.988 00:00:10.373 TCP 23.104.0.1:55274 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:28:51.567 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:57328 10 6452 1 2025-10-18 07:28:52.397 00:00:10.366 TCP 23.104.0.1:46880 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:29:17.631 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:29:17.456 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:29:51.784 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:43798 10 6452 1 2025-10-18 07:29:52.803 00:00:10.365 TCP 23.104.0.1:33778 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:26:44.063 00:05:02.521 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:26:44.066 00:05:02.516 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:30:52.001 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:59016 10 6452 1 2025-10-18 07:30:53.209 00:00:10.367 TCP 23.104.0.1:57414 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:31:52.178 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:58346 10 6452 1 2025-10-18 07:31:53.609 00:00:10.367 TCP 23.104.0.1:52186 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:32:54.013 00:00:10.364 TCP 23.104.0.1:38070 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:32:52.399 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:50868 10 6452 1 2025-10-18 07:33:52.617 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:54362 10 6452 1 2025-10-18 07:33:54.416 00:00:10.320 TCP 23.104.0.1:47352 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:34:17.709 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:34:17.684 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:34:52.837 00:00:10.141 TCP 1.101.0.1:3000 -> 22.102.0.1:45356 10 6452 1 2025-10-18 07:34:54.775 00:00:10.372 TCP 23.104.0.1:37384 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:35:53.024 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:41940 10 6452 1 2025-10-18 07:35:55.183 00:00:10.371 TCP 23.104.0.1:45918 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:32:44.066 00:05:02.516 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:32:44.065 00:05:02.521 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:36:55.590 00:00:10.365 TCP 23.104.0.1:57600 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:36:53.240 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:39224 10 6452 1 2025-10-18 07:37:55.993 00:00:10.364 TCP 23.104.0.1:34198 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:37:53.449 00:00:10.128 TCP 1.101.0.1:3000 -> 22.102.0.1:56374 10 6452 1 2025-10-18 07:38:56.406 00:00:10.321 TCP 23.104.0.1:53590 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:38:53.618 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:50058 10 6452 1 2025-10-18 07:39:17.808 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:39:17.921 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:39:53.828 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:56124 10 6452 1 2025-10-18 07:39:56.760 00:00:10.375 TCP 23.104.0.1:59142 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:40:54.068 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:38292 10 6452 1 2025-10-18 07:40:57.174 00:00:10.365 TCP 23.104.0.1:37400 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:41:54.280 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:41138 10 6452 1 2025-10-18 07:41:57.576 00:00:10.362 TCP 23.104.0.1:52764 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:38:44.064 00:05:02.522 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:38:44.067 00:05:02.517 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:42:54.499 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:48982 10 6452 1 2025-10-18 07:42:57.980 00:00:10.325 TCP 23.104.0.1:50542 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:43:54.675 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:41188 10 6452 1 2025-10-18 07:43:58.344 00:00:10.371 TCP 23.104.0.1:60506 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:44:17.890 00:00:00.020 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:44:17.942 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:44:54.900 00:00:10.199 TCP 1.101.0.1:3000 -> 22.102.0.1:43822 10 6452 1 2025-10-18 07:44:58.747 00:00:10.390 TCP 23.104.0.1:43728 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:45:55.143 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:53114 10 6452 1 2025-10-18 07:45:59.172 00:00:10.328 TCP 23.104.0.1:37860 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:46:55.358 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:57594 10 6452 1 2025-10-18 07:46:59.538 00:00:10.366 TCP 23.104.0.1:50366 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:47:55.580 00:00:10.221 TCP 1.101.0.1:3000 -> 22.102.0.1:34206 14 14286 1 2025-10-18 07:47:59.945 00:00:10.518 TCP 23.104.0.1:48032 -> 1.101.0.1:3000 17 2241 1 2025-10-18 07:44:44.068 00:05:02.520 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:44:44.071 00:05:02.515 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:48:55.852 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:36600 10 6452 1 2025-10-18 07:49:00.509 00:00:10.377 TCP 23.104.0.1:34910 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:49:17.773 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:49:18.249 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:49:56.085 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:55504 10 6452 1 2025-10-18 07:50:00.929 00:00:10.382 TCP 23.104.0.1:51150 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:50:56.300 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:42006 10 6452 1 2025-10-18 07:51:01.345 00:00:10.321 TCP 23.104.0.1:37832 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:51:56.470 00:00:10.158 TCP 1.101.0.1:3000 -> 22.102.0.1:35174 10 6452 1 2025-10-18 07:52:01.705 00:00:10.320 TCP 23.104.0.1:47264 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:52:56.668 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:34838 10 6452 1 2025-10-18 07:53:02.090 00:00:10.377 TCP 23.104.0.1:43462 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:53:56.877 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:55388 10 6452 1 2025-10-18 07:54:02.515 00:00:10.323 TCP 23.104.0.1:40218 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:54:18.000 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 07:54:17.822 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 07:50:44.069 00:05:02.520 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 07:50:44.072 00:05:02.515 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 07:54:57.105 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:52738 10 6452 1 2025-10-18 07:55:02.883 00:00:10.372 TCP 23.104.0.1:42464 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:55:57.320 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:36356 10 6452 1 2025-10-18 07:56:03.290 00:00:10.386 TCP 23.104.0.1:43076 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:56:57.527 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:53320 10 6452 1 2025-10-18 07:57:03.718 00:00:10.341 TCP 23.104.0.1:50596 -> 1.101.0.1:3000 11 1507 1 2025-10-18 07:57:57.762 00:00:10.221 TCP 1.101.0.1:3000 -> 22.102.0.1:60534 10 6452 1 2025-10-18 07:58:04.109 00:00:10.368 TCP 23.104.0.1:53824 -> 1.101.0.1:3000 11 1507 1 Summary: total flows: 162, total bytes: 498957, total packets: 1561, avg bps: 1081, avg pps: 0, avg bpp: 319 Time window: 2025-10-18 06:56:44 - 2025-10-18 07:58:14 Total flows processed: 162, passed: 162, Blocks skipped: 0, Bytes read: 16912 Sys: 0.0030s User: 0.0020s Wall: 0.0023s flows/second: 70646.4 Runtime: 0.0023s