Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-10-19 08:58:55.029 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:53600 10 6452 1 2025-10-19 08:59:47.909 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 08:59:48.290 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 08:59:41.146 00:00:10.363 TCP 23.104.0.1:44500 -> 1.101.0.1:3000 11 1507 1 2025-10-19 08:59:55.255 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:33074 10 6452 1 2025-10-19 08:56:44.537 00:05:02.615 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:00:41.548 00:00:10.325 TCP 23.104.0.1:48344 -> 1.101.0.1:3000 11 1507 1 2025-10-19 08:56:44.539 00:05:02.610 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:00:55.464 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:34940 10 6452 1 2025-10-19 09:01:41.911 00:00:10.394 TCP 23.104.0.1:44452 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:01:55.686 00:00:10.143 TCP 1.101.0.1:3000 -> 22.102.0.1:32896 10 6452 1 2025-10-19 09:02:42.345 00:00:10.325 TCP 23.104.0.1:53502 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:02:55.869 00:00:10.158 TCP 1.101.0.1:3000 -> 22.102.0.1:48846 10 6452 1 2025-10-19 09:03:42.707 00:00:10.388 TCP 23.104.0.1:51942 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:03:56.087 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:49888 10 6452 1 2025-10-19 09:04:48.397 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:04:48.297 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:04:43.134 00:00:10.380 TCP 23.104.0.1:54038 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:04:56.297 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:40418 10 6452 1 2025-10-19 09:05:43.556 00:00:10.361 TCP 23.104.0.1:51874 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:05:56.508 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:52306 10 6452 1 2025-10-19 09:02:44.541 00:05:02.610 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:02:44.538 00:05:02.615 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:06:43.958 00:00:10.367 TCP 23.104.0.1:46036 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:06:56.722 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:58268 10 6452 1 2025-10-19 09:07:44.368 00:00:10.322 TCP 23.104.0.1:39640 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:07:56.891 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:50676 10 6452 1 2025-10-19 09:08:44.730 00:00:10.371 TCP 23.104.0.1:59956 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:08:57.108 00:00:10.223 TCP 1.101.0.1:3000 -> 22.102.0.1:56050 10 6452 1 2025-10-19 09:09:48.425 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:09:48.375 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:09:45.143 00:00:10.321 TCP 23.104.0.1:53518 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:09:57.368 00:00:10.135 TCP 1.101.0.1:3000 -> 22.102.0.1:46270 10 6452 1 2025-10-19 09:10:45.504 00:00:10.367 TCP 23.104.0.1:53546 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:10:57.542 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:57286 10 6452 1 2025-10-19 09:11:45.911 00:00:10.359 TCP 23.104.0.1:53230 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:11:57.751 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:55928 10 6452 1 2025-10-19 09:08:44.541 00:05:02.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:08:44.544 00:05:02.608 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:12:46.306 00:00:10.323 TCP 23.104.0.1:36696 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:12:57.963 00:00:10.147 TCP 1.101.0.1:3000 -> 22.102.0.1:58182 10 6452 1 2025-10-19 09:13:46.669 00:00:10.360 TCP 23.104.0.1:46002 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:13:58.145 00:00:10.128 TCP 1.101.0.1:3000 -> 22.102.0.1:48190 10 6452 1 2025-10-19 09:14:48.568 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:14:48.576 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:14:47.096 00:00:10.322 TCP 23.104.0.1:50712 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:14:58.311 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:51254 10 6452 1 2025-10-19 09:15:47.461 00:00:10.328 TCP 23.104.0.1:33474 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:15:58.523 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:54558 10 6452 1 2025-10-19 09:16:47.820 00:00:10.367 TCP 23.104.0.1:58638 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:16:58.738 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:40886 10 6452 1 2025-10-19 09:17:48.220 00:00:10.365 TCP 23.104.0.1:34258 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:17:58.952 00:00:10.201 TCP 1.101.0.1:3000 -> 22.102.0.1:40568 12 6556 1 2025-10-19 09:14:44.544 00:05:02.609 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:14:44.542 00:05:02.614 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:18:48.620 00:00:10.324 TCP 23.104.0.1:60538 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:18:59.191 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:38750 10 6452 1 2025-10-19 09:19:48.688 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:19:48.708 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:19:48.987 00:00:10.329 TCP 23.104.0.1:57058 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:19:59.423 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:37998 10 6452 1 2025-10-19 09:20:49.352 00:00:10.329 TCP 23.104.0.1:57612 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:20:59.639 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:33318 10 6452 1 2025-10-19 09:21:49.716 00:00:10.369 TCP 23.104.0.1:43632 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:21:59.849 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:39294 10 6452 1 2025-10-19 09:22:50.125 00:00:11.150 TCP 23.104.0.1:60372 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:23:00.084 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:39908 10 6452 1 2025-10-19 09:23:51.310 00:00:10.360 TCP 23.104.0.1:45966 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:24:00.288 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:53278 10 6452 1 2025-10-19 09:24:48.884 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:20:44.543 00:05:02.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:24:48.613 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:20:44.545 00:05:02.609 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:24:51.708 00:00:10.358 TCP 23.104.0.1:46538 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:25:00.507 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:55540 10 6452 1 2025-10-19 09:25:52.112 00:00:10.366 TCP 23.104.0.1:56432 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:26:00.744 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:48292 10 6452 1 2025-10-19 09:26:52.521 00:00:10.369 TCP 23.104.0.1:54484 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:27:00.968 00:00:10.150 TCP 1.101.0.1:3000 -> 22.102.0.1:48584 10 6452 1 2025-10-19 09:27:52.923 00:00:10.382 TCP 23.104.0.1:54234 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:28:01.154 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:39282 10 6452 1 2025-10-19 09:28:53.340 00:00:10.366 TCP 23.104.0.1:53832 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:29:01.363 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:48712 10 6452 1 2025-10-19 09:29:48.919 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:29:49.019 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:29:53.741 00:00:10.363 TCP 23.104.0.1:40754 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:30:01.573 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:41742 10 6452 1 2025-10-19 09:26:44.545 00:05:02.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:26:44.547 00:05:02.608 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:30:54.141 00:00:10.370 TCP 23.104.0.1:34592 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:31:01.746 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:44956 10 6452 1 2025-10-19 09:31:54.549 00:00:10.368 TCP 23.104.0.1:40122 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:32:01.955 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:41980 10 6452 1 2025-10-19 09:32:54.947 00:00:10.375 TCP 23.104.0.1:57732 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:33:02.185 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:40440 10 6452 1 2025-10-19 09:33:55.361 00:00:10.361 TCP 23.104.0.1:49706 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:34:02.402 00:00:10.129 TCP 1.101.0.1:3000 -> 22.102.0.1:53620 10 6452 1 2025-10-19 09:34:49.002 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:34:48.984 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:34:55.762 00:00:10.333 TCP 23.104.0.1:35910 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:35:02.567 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:55000 10 6452 1 2025-10-19 09:35:56.129 00:00:10.329 TCP 23.104.0.1:53446 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:36:02.741 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:49474 10 6452 1 2025-10-19 09:32:44.550 00:05:02.609 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:32:44.547 00:05:02.615 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:36:56.504 00:00:10.372 TCP 23.104.0.1:42236 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:37:02.952 00:00:10.204 TCP 1.101.0.1:3000 -> 22.102.0.1:33816 12 6556 1 2025-10-19 09:37:56.912 00:00:10.383 TCP 23.104.0.1:48946 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:38:03.192 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:60308 10 6452 1 2025-10-19 09:38:57.335 00:00:10.370 TCP 23.104.0.1:50362 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:39:03.410 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:42008 10 6452 1 2025-10-19 09:39:49.151 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:39:48.896 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:39:57.750 00:00:10.372 TCP 23.104.0.1:40342 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:40:03.583 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:37324 10 6452 1 2025-10-19 09:40:58.164 00:00:10.369 TCP 23.104.0.1:59850 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:41:03.805 00:00:10.144 TCP 1.101.0.1:3000 -> 22.102.0.1:36634 10 6452 1 2025-10-19 09:41:58.568 00:00:10.364 TCP 23.104.0.1:43318 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:42:03.988 00:00:10.190 TCP 1.101.0.1:3000 -> 22.102.0.1:50084 10 6452 1 2025-10-19 09:38:44.551 00:05:02.611 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:38:44.549 00:05:02.616 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:42:58.972 00:00:10.376 TCP 23.104.0.1:33856 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:43:04.220 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:60858 10 6452 1 2025-10-19 09:43:59.396 00:00:10.369 TCP 23.104.0.1:54458 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:44:04.432 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:44810 10 6452 1 2025-10-19 09:44:49.023 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:44:49.246 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:44:59.802 00:00:10.365 TCP 23.104.0.1:53754 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:45:04.599 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:59824 10 6452 1 2025-10-19 09:46:00.209 00:00:10.320 TCP 23.104.0.1:43604 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:46:04.819 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:35258 10 6452 1 2025-10-19 09:47:00.563 00:00:10.371 TCP 23.104.0.1:36382 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:47:05.043 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:59428 10 6452 1 2025-10-19 09:48:00.975 00:00:10.375 TCP 23.104.0.1:54398 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:48:05.247 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:59936 10 6452 1 2025-10-19 09:44:44.549 00:05:02.618 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:44:44.552 00:05:02.614 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:49:01.390 00:00:10.367 TCP 23.104.0.1:32912 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:49:05.424 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:37994 10 6452 1 2025-10-19 09:49:49.163 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:49:49.297 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:50:01.793 00:00:10.377 TCP 23.104.0.1:53080 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:50:05.643 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:45630 10 6452 1 2025-10-19 09:51:05.854 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:41210 10 6452 1 2025-10-19 09:51:02.205 00:00:10.364 TCP 23.104.0.1:42790 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:52:02.605 00:00:10.364 TCP 23.104.0.1:54004 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:52:06.082 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:38726 10 6452 1 2025-10-19 09:53:03.012 00:00:10.365 TCP 23.104.0.1:48274 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:53:06.304 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:60198 10 6452 1 2025-10-19 09:54:06.522 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:35652 10 6452 1 2025-10-19 09:54:03.428 00:00:10.360 TCP 23.104.0.1:59076 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:54:49.685 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-19 09:50:44.553 00:05:02.612 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-19 09:54:49.564 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-19 09:50:44.551 00:05:02.617 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-19 09:55:06.739 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:40334 10 6452 1 2025-10-19 09:55:03.827 00:00:10.386 TCP 23.104.0.1:52160 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:56:04.253 00:00:16.756 TCP 23.104.0.1:41680 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:56:06.955 00:00:13.957 TCP 1.101.0.1:3000 -> 22.102.0.1:38980 10 6452 1 2025-10-19 09:57:10.965 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:60644 10 6452 1 2025-10-19 09:57:11.057 00:00:10.322 TCP 23.104.0.1:58476 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:58:11.415 00:00:10.361 TCP 23.104.0.1:36482 -> 1.101.0.1:3000 11 1507 1 2025-10-19 09:58:11.201 00:00:10.141 TCP 1.101.0.1:3000 -> 22.102.0.1:48040 10 6452 1 Summary: total flows: 163, total bytes: 497049, total packets: 1565, avg bps: 1075, avg pps: 0, avg bpp: 317 Time window: 2025-10-19 08:56:44 - 2025-10-19 09:58:21 Total flows processed: 163, passed: 163, Blocks skipped: 0, Bytes read: 17016 Sys: 0.0022s User: 0.0022s Wall: 0.0020s flows/second: 81710.5 Runtime: 0.0020s