Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-10-18 22:58:58.940 00:00:10.373 TCP 23.104.0.1:48706 -> 1.101.0.1:3000 11 1507 1 2025-10-18 22:58:59.797 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:54324 10 6452 1 2025-10-18 22:59:36.275 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 22:59:36.206 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 22:59:59.974 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:54540 10 6452 1 2025-10-18 22:59:59.352 00:00:10.361 TCP 23.104.0.1:47248 -> 1.101.0.1:3000 11 1507 1 2025-10-18 22:56:44.354 00:05:02.571 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 22:56:44.358 00:05:02.566 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:01:00.152 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:45228 10 6452 1 2025-10-18 23:00:59.757 00:00:10.332 TCP 23.104.0.1:51268 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:02:00.366 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:36394 10 6452 1 2025-10-18 23:02:00.122 00:00:10.324 TCP 23.104.0.1:35112 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:03:00.582 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:57162 10 6452 1 2025-10-18 23:03:00.482 00:00:10.364 TCP 23.104.0.1:40172 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:04:00.758 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:53758 10 6452 1 2025-10-18 23:04:00.883 00:00:10.387 TCP 23.104.0.1:45584 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:04:36.109 00:00:00.048 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:04:36.376 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:05:01.309 00:00:10.324 TCP 23.104.0.1:39570 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:05:00.970 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:51886 10 6452 1 2025-10-18 23:06:01.191 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:55700 10 6452 1 2025-10-18 23:06:01.668 00:00:10.366 TCP 23.104.0.1:52154 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:02:44.358 00:05:02.566 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:02:44.356 00:05:02.570 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 23:07:01.366 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:57026 10 6452 1 2025-10-18 23:07:02.100 00:00:10.368 TCP 23.104.0.1:55656 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:08:01.593 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:52374 10 6452 1 2025-10-18 23:08:02.506 00:00:10.346 TCP 23.104.0.1:36996 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:09:01.816 00:00:10.144 TCP 1.101.0.1:3000 -> 22.102.0.1:34500 10 6452 1 2025-10-18 23:09:02.896 00:00:10.377 TCP 23.104.0.1:35958 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:09:36.524 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:09:36.565 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:10:01.990 00:00:10.216 TCP 1.101.0.1:3000 -> 22.102.0.1:57216 10 6452 1 2025-10-18 23:10:03.318 00:00:10.367 TCP 23.104.0.1:41050 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:11:02.255 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:54308 10 6452 1 2025-10-18 23:11:03.728 00:00:10.371 TCP 23.104.0.1:39986 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:12:02.482 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:49054 10 6452 1 2025-10-18 23:12:04.135 00:00:10.369 TCP 23.104.0.1:38912 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:08:44.358 00:05:02.567 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:08:44.357 00:05:02.572 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 23:13:02.693 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:33038 10 6452 1 2025-10-18 23:13:04.545 00:00:10.370 TCP 23.104.0.1:59562 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:14:02.905 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:44226 10 6452 1 2025-10-18 23:14:04.957 00:00:10.361 TCP 23.104.0.1:39572 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:14:36.581 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:14:36.231 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:15:03.118 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:47358 10 6452 1 2025-10-18 23:15:05.357 00:00:10.417 TCP 23.104.0.1:40898 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:16:03.336 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:51090 12 6556 1 2025-10-18 23:16:05.814 00:00:10.368 TCP 23.104.0.1:45492 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:17:06.220 00:00:10.367 TCP 23.104.0.1:41722 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:17:03.557 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:53950 10 6452 1 2025-10-18 23:18:06.624 00:00:10.327 TCP 23.104.0.1:37486 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:18:03.764 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:52504 10 6452 1 2025-10-18 23:14:44.357 00:05:02.574 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 23:14:44.361 00:05:02.568 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:19:03.992 00:00:10.153 TCP 1.101.0.1:3000 -> 22.102.0.1:55920 10 6452 1 2025-10-18 23:19:06.985 00:00:10.367 TCP 23.104.0.1:40344 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:19:36.682 00:00:00.025 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:19:36.667 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:20:04.185 00:00:10.199 TCP 1.101.0.1:3000 -> 22.102.0.1:58086 10 6452 1 2025-10-18 23:20:07.389 00:00:10.323 TCP 23.104.0.1:53240 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:21:04.415 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:44500 10 6452 1 2025-10-18 23:21:07.753 00:00:10.391 TCP 23.104.0.1:52846 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:22:04.633 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:59882 10 6452 1 2025-10-18 23:22:08.181 00:00:10.361 TCP 23.104.0.1:51702 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:23:04.847 00:00:10.228 TCP 1.101.0.1:3000 -> 22.102.0.1:59916 12 10369 1 2025-10-18 23:23:08.583 00:00:10.396 TCP 23.104.0.1:39210 -> 1.101.0.1:3000 15 1926 1 2025-10-18 23:24:05.111 00:00:10.692 TCP 1.101.0.1:3000 -> 22.102.0.1:40798 10 6452 1 2025-10-18 23:24:09.020 00:00:10.323 TCP 23.104.0.1:43984 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:24:36.668 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:24:36.629 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:20:44.368 00:05:02.568 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 23:20:44.369 00:05:02.563 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:25:05.851 00:00:10.201 TCP 1.101.0.1:3000 -> 22.102.0.1:41898 10 6452 1 2025-10-18 23:25:09.397 00:00:10.366 TCP 23.104.0.1:45258 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:26:06.092 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:41652 10 6452 1 2025-10-18 23:26:09.800 00:00:10.371 TCP 23.104.0.1:39692 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:27:06.302 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:42348 10 6452 1 2025-10-18 23:27:10.202 00:00:10.365 TCP 23.104.0.1:56792 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:28:06.519 00:00:10.367 TCP 1.101.0.1:3000 -> 22.102.0.1:50494 10 6452 1 2025-10-18 23:28:10.602 00:00:10.536 TCP 23.104.0.1:40868 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:29:11.172 00:00:10.364 TCP 23.104.0.1:49318 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:29:06.925 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:59436 10 6452 1 2025-10-18 23:29:37.427 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:29:37.463 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:30:11.570 00:00:10.369 TCP 23.104.0.1:46406 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:30:07.133 00:00:10.200 TCP 1.101.0.1:3000 -> 22.102.0.1:52040 10 6452 1 2025-10-18 23:26:44.367 00:05:02.569 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 23:26:44.370 00:05:02.564 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:31:07.376 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:59264 10 6452 1 2025-10-18 23:31:11.976 00:00:10.364 TCP 23.104.0.1:56922 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:32:07.594 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:54908 10 6452 1 2025-10-18 23:32:12.378 00:00:10.359 TCP 23.104.0.1:58862 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:33:07.820 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:57070 10 6452 1 2025-10-18 23:33:12.780 00:00:10.367 TCP 23.104.0.1:51240 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:34:08.043 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:38930 10 6452 1 2025-10-18 23:34:13.189 00:00:10.332 TCP 23.104.0.1:39178 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:34:36.826 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:34:37.149 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:35:08.261 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:37354 10 6452 1 2025-10-18 23:35:13.569 00:00:10.370 TCP 23.104.0.1:48402 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:36:08.482 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:35604 10 6452 1 2025-10-18 23:36:13.976 00:00:10.383 TCP 23.104.0.1:48878 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:32:44.370 00:05:02.569 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 23:32:44.371 00:05:02.564 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:37:08.704 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:40022 10 6452 1 2025-10-18 23:37:14.414 00:00:10.368 TCP 23.104.0.1:55324 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:38:08.921 00:00:10.205 TCP 1.101.0.1:3000 -> 22.102.0.1:60674 10 6452 1 2025-10-18 23:38:14.820 00:00:22.343 TCP 23.104.0.1:36072 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:39:09.170 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:38442 10 6452 1 2025-10-18 23:39:36.919 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:39:36.978 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:39:27.256 00:00:10.356 TCP 23.104.0.1:60384 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:40:09.385 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:55100 10 6452 1 2025-10-18 23:40:27.660 00:00:10.364 TCP 23.104.0.1:46174 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:41:09.600 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:36128 10 6452 1 2025-10-18 23:41:28.092 00:00:10.357 TCP 23.104.0.1:59804 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:42:09.809 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:37284 10 6452 1 2025-10-18 23:42:28.488 00:00:10.363 TCP 23.104.0.1:37160 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:38:44.373 00:05:02.564 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:38:44.369 00:05:02.570 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 23:43:10.045 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:56380 10 6452 1 2025-10-18 23:43:28.894 00:00:10.418 TCP 23.104.0.1:43440 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:44:10.271 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:39930 10 6452 1 2025-10-18 23:44:36.883 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:44:36.998 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:44:29.354 00:00:10.357 TCP 23.104.0.1:41986 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:45:10.450 00:00:10.193 TCP 1.101.0.1:3000 -> 22.102.0.1:57094 10 6452 1 2025-10-18 23:45:29.749 00:00:10.368 TCP 23.104.0.1:43582 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:46:10.681 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:46260 10 6452 1 2025-10-18 23:46:30.155 00:00:10.319 TCP 23.104.0.1:55662 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:47:10.901 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:51906 10 6452 1 2025-10-18 23:47:30.517 00:00:10.323 TCP 23.104.0.1:52160 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:48:11.117 00:00:11.224 TCP 1.101.0.1:3000 -> 22.102.0.1:58660 11 6504 1 2025-10-18 23:48:30.877 00:00:10.325 TCP 23.104.0.1:57320 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:44:44.372 00:05:02.575 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 23:44:44.376 00:05:02.569 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:49:12.377 00:00:10.540 TCP 1.101.0.1:3000 -> 22.102.0.1:48052 10 6452 1 2025-10-18 23:49:37.281 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:49:37.233 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:49:31.240 00:00:12.134 TCP 23.104.0.1:45108 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:50:12.961 00:00:10.193 TCP 1.101.0.1:3000 -> 22.102.0.1:48724 12 6556 1 2025-10-18 23:50:33.443 00:00:10.325 TCP 23.104.0.1:41900 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:51:13.192 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:37914 10 6452 1 2025-10-18 23:51:33.807 00:00:10.368 TCP 23.104.0.1:53952 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:52:13.416 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:59096 10 6452 1 2025-10-18 23:52:34.216 00:00:10.338 TCP 23.104.0.1:35818 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:53:13.642 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:55140 10 6452 1 2025-10-18 23:53:34.592 00:00:10.360 TCP 23.104.0.1:43712 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:54:13.857 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:59336 10 6452 1 2025-10-18 23:54:37.107 00:00:00.039 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-18 23:54:37.173 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-18 23:54:34.991 00:00:10.363 TCP 23.104.0.1:45582 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:50:44.375 00:05:02.566 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-18 23:50:44.374 00:05:02.570 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-18 23:55:14.088 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:35320 10 6452 1 2025-10-18 23:55:35.395 00:00:10.361 TCP 23.104.0.1:48632 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:56:14.304 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:42574 10 6452 1 2025-10-18 23:56:35.804 00:00:10.363 TCP 23.104.0.1:34746 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:57:14.530 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:33274 10 6452 1 2025-10-18 23:57:36.214 00:00:10.364 TCP 23.104.0.1:59238 -> 1.101.0.1:3000 11 1507 1 2025-10-18 23:58:14.757 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:48984 10 6452 1 2025-10-18 23:58:36.613 00:00:10.366 TCP 23.104.0.1:48288 -> 1.101.0.1:3000 11 1507 1 Summary: total flows: 164, total bytes: 502944, total packets: 1583, avg bps: 1080, avg pps: 0, avg bpp: 317 Time window: 2025-10-18 22:56:44 - 2025-10-18 23:58:46 Total flows processed: 164, passed: 164, Blocks skipped: 0, Bytes read: 17120 Sys: 0.0047s User: 0.0009s Wall: 0.0027s flows/second: 61422.1 Runtime: 0.0027s