Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-10-29 13:59:06.338 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:41636 10 6452 1 2025-10-29 13:59:43.455 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 13:59:43.487 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 13:59:39.310 00:00:10.364 TCP 23.104.0.1:44814 -> 1.101.0.1:3000 11 1507 1 2025-10-29 13:55:49.139 00:05:03.368 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:00:06.562 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:51248 10 6452 1 2025-10-29 13:55:52.506 00:05:56.630 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:00:39.706 00:00:10.364 TCP 23.104.0.1:49258 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:01:06.771 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:46770 10 6452 1 2025-10-29 14:01:40.107 00:00:10.364 TCP 23.104.0.1:57044 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:02:06.990 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:39600 10 6452 1 2025-10-29 14:02:40.511 00:00:10.322 TCP 23.104.0.1:44690 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:03:07.218 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:52600 10 6452 1 2025-10-29 14:03:40.870 00:00:10.368 TCP 23.104.0.1:47012 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:04:07.433 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:49526 10 6452 1 2025-10-29 14:04:43.541 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:04:43.375 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:04:41.286 00:00:10.360 TCP 23.104.0.1:49708 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:05:07.611 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:33956 10 6452 1 2025-10-29 14:01:49.139 00:05:03.367 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:05:41.686 00:00:10.358 TCP 23.104.0.1:56514 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:06:07.830 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:36958 10 6452 1 2025-10-29 14:01:52.508 00:05:56.629 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:06:42.097 00:00:10.324 TCP 23.104.0.1:58582 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:07:08.071 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:46698 10 6452 1 2025-10-29 14:07:42.460 00:00:10.360 TCP 23.104.0.1:60618 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:08:08.289 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:45664 10 6452 1 2025-10-29 14:08:42.861 00:00:10.323 TCP 23.104.0.1:52360 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:09:08.515 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:34210 10 6452 1 2025-10-29 14:09:43.647 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:09:43.537 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:09:43.222 00:00:10.384 TCP 23.104.0.1:46692 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:10:08.732 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:59728 10 6452 1 2025-10-29 14:10:43.636 00:00:10.366 TCP 23.104.0.1:34202 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:11:08.945 00:00:10.209 TCP 1.101.0.1:3000 -> 22.102.0.1:37368 10 6452 1 2025-10-29 14:07:49.139 00:05:03.372 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:11:44.050 00:00:10.329 TCP 23.104.0.1:41796 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:12:09.188 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:55644 10 6452 1 2025-10-29 14:07:52.511 00:05:56.626 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:12:44.424 00:00:10.375 TCP 23.104.0.1:37562 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:13:09.407 00:00:10.838 TCP 1.101.0.1:3000 -> 22.102.0.1:45914 10 6452 1 2025-10-29 14:13:44.842 00:00:10.403 TCP 23.104.0.1:34590 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:14:10.280 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:58664 10 6452 1 2025-10-29 14:14:43.593 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:14:43.438 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:14:45.270 00:00:10.365 TCP 23.104.0.1:46554 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:15:10.501 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:36270 10 6452 1 2025-10-29 14:15:45.679 00:00:10.324 TCP 23.104.0.1:52250 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:16:10.720 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:35336 10 6452 1 2025-10-29 14:16:46.048 00:00:10.367 TCP 23.104.0.1:43954 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:17:10.942 00:00:10.199 TCP 1.101.0.1:3000 -> 22.102.0.1:57862 10 6452 1 2025-10-29 14:17:46.456 00:00:10.328 TCP 23.104.0.1:34886 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:13:49.141 00:05:03.373 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:18:11.183 00:00:10.140 TCP 1.101.0.1:3000 -> 22.102.0.1:49532 10 6452 1 2025-10-29 14:13:52.515 00:05:56.625 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:18:46.821 00:00:10.368 TCP 23.104.0.1:57284 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:19:11.359 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:38900 10 6452 1 2025-10-29 14:19:43.951 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:19:43.546 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:19:47.227 00:00:10.364 TCP 23.104.0.1:43698 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:20:11.568 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:40916 10 6452 1 2025-10-29 14:20:47.634 00:00:10.364 TCP 23.104.0.1:43346 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:21:11.780 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:45506 10 6452 1 2025-10-29 14:21:48.036 00:00:10.377 TCP 23.104.0.1:60528 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:22:11.958 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:49896 10 6452 1 2025-10-29 14:22:48.451 00:00:10.363 TCP 23.104.0.1:55644 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:23:12.176 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:45624 10 6452 1 2025-10-29 14:19:49.142 00:05:03.375 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:23:48.853 00:00:10.373 TCP 23.104.0.1:35706 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:24:12.391 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:52260 10 6452 1 2025-10-29 14:24:44.054 00:00:00.037 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:24:43.918 00:00:00.019 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:19:52.517 00:05:56.623 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:24:49.262 00:00:10.367 TCP 23.104.0.1:46728 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:25:12.609 00:00:10.166 TCP 1.101.0.1:3000 -> 22.102.0.1:37724 10 6452 1 2025-10-29 14:25:49.667 00:00:10.362 TCP 23.104.0.1:47276 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:26:12.807 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:56904 10 6452 1 2025-10-29 14:26:50.101 00:00:10.370 TCP 23.104.0.1:39192 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:27:13.039 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:33718 10 6452 1 2025-10-29 14:27:50.519 00:00:10.366 TCP 23.104.0.1:38236 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:28:13.253 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:58612 10 6452 1 2025-10-29 14:28:50.924 00:00:10.342 TCP 23.104.0.1:35288 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:29:13.470 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:42630 10 6452 1 2025-10-29 14:29:44.105 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:29:43.988 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:25:49.143 00:05:03.375 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:29:51.307 00:00:10.332 TCP 23.104.0.1:48370 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:30:13.681 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:52348 10 6452 1 2025-10-29 14:25:52.520 00:05:56.622 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:30:51.682 00:00:10.363 TCP 23.104.0.1:53526 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:31:13.905 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:57464 10 6452 1 2025-10-29 14:31:52.107 00:00:10.365 TCP 23.104.0.1:56150 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:32:14.124 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:46140 10 6452 1 2025-10-29 14:32:52.512 00:00:10.322 TCP 23.104.0.1:37794 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:33:14.341 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:40058 10 6452 1 2025-10-29 14:33:52.868 00:00:10.426 TCP 23.104.0.1:58024 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:34:14.562 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:41826 10 6452 1 2025-10-29 14:34:44.159 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:34:44.130 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:34:53.346 00:00:10.350 TCP 23.104.0.1:47108 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:35:14.777 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:44706 10 6452 1 2025-10-29 14:31:49.144 00:05:03.376 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:35:53.742 00:00:10.366 TCP 23.104.0.1:39782 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:36:14.993 00:00:10.195 TCP 1.101.0.1:3000 -> 22.102.0.1:40428 10 6452 1 2025-10-29 14:31:52.520 00:05:56.623 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:36:54.145 00:00:10.324 TCP 23.104.0.1:42562 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:37:15.223 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:49808 10 6452 1 2025-10-29 14:37:54.507 00:00:10.364 TCP 23.104.0.1:44090 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:38:15.446 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:54176 10 6452 1 2025-10-29 14:38:54.914 00:00:10.371 TCP 23.104.0.1:42088 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:39:15.657 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:41034 10 6452 1 2025-10-29 14:39:44.320 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:39:44.309 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:39:55.320 00:00:10.366 TCP 23.104.0.1:52350 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:40:15.867 00:00:10.143 TCP 1.101.0.1:3000 -> 22.102.0.1:35002 10 6452 1 2025-10-29 14:40:55.721 00:00:10.374 TCP 23.104.0.1:33794 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:41:16.071 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:54630 10 6452 1 2025-10-29 14:37:49.145 00:05:03.374 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:41:56.135 00:00:10.368 TCP 23.104.0.1:49406 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:42:16.290 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:44122 10 6452 1 2025-10-29 14:37:52.522 00:05:56.622 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:42:56.539 00:00:10.328 TCP 23.104.0.1:48934 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:43:16.497 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:39258 10 6452 1 2025-10-29 14:43:56.905 00:00:10.330 TCP 23.104.0.1:38002 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:44:16.711 00:00:10.379 TCP 1.101.0.1:3000 -> 22.102.0.1:44460 10 6452 1 2025-10-29 14:44:44.317 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:44:44.510 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:44:57.271 00:00:10.369 TCP 23.104.0.1:40108 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:45:17.127 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:51270 10 6452 1 2025-10-29 14:45:57.675 00:00:10.381 TCP 23.104.0.1:43692 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:46:17.345 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:36202 10 6452 1 2025-10-29 14:46:58.104 00:00:10.361 TCP 23.104.0.1:58400 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:47:17.563 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:39550 10 6452 1 2025-10-29 14:43:49.146 00:05:03.375 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:47:58.505 00:00:10.370 TCP 23.104.0.1:43756 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:48:17.776 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:59826 10 6452 1 2025-10-29 14:43:52.523 00:05:56.624 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:48:58.917 00:00:10.367 TCP 23.104.0.1:59202 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:49:17.994 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:54466 10 6452 1 2025-10-29 14:49:44.531 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:49:44.485 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:49:59.326 00:00:10.323 TCP 23.104.0.1:45946 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:50:18.220 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:47980 10 6452 1 2025-10-29 14:50:59.694 00:00:10.365 TCP 23.104.0.1:48930 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:51:18.431 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:56842 10 6452 1 2025-10-29 14:52:00.107 00:00:10.357 TCP 23.104.0.1:33262 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:52:18.643 00:00:10.162 TCP 1.101.0.1:3000 -> 22.102.0.1:45740 10 6452 1 2025-10-29 14:53:00.504 00:00:10.325 TCP 23.104.0.1:58252 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:53:18.853 00:00:10.144 TCP 1.101.0.1:3000 -> 22.102.0.1:33936 10 6452 1 2025-10-29 14:49:49.149 00:05:03.374 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-10-29 14:54:00.867 00:00:10.327 TCP 23.104.0.1:34660 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:54:19.043 00:00:10.197 TCP 1.101.0.1:3000 -> 22.102.0.1:37154 10 6452 1 2025-10-29 14:54:44.707 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-10-29 14:54:44.268 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-10-29 14:49:52.523 00:05:56.623 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-10-29 14:55:01.232 00:00:10.364 TCP 23.104.0.1:50890 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:55:19.281 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:33838 10 6452 1 2025-10-29 14:56:01.635 00:00:10.368 TCP 23.104.0.1:39708 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:56:19.453 00:00:10.131 TCP 1.101.0.1:3000 -> 22.102.0.1:50902 10 6452 1 2025-10-29 14:57:02.040 00:00:10.323 TCP 23.104.0.1:58688 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:57:19.627 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:42528 10 6452 1 2025-10-29 14:58:02.400 00:00:10.367 TCP 23.104.0.1:41878 -> 1.101.0.1:3000 11 1507 1 2025-10-29 14:58:19.838 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:43346 10 6452 1 Summary: total flows: 163, total bytes: 496841, total packets: 1561, avg bps: 1056, avg pps: 0, avg bpp: 318 Time window: 2025-10-29 13:55:49 - 2025-10-29 14:58:30 Total flows processed: 163, passed: 163, Blocks skipped: 0, Bytes read: 17016 Sys: 0.0036s User: 0.0009s Wall: 0.0020s flows/second: 80488.8 Runtime: 0.0020s