Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-11-15 10:59:00.118 00:00:10.366 TCP 23.104.0.1:40388 -> 1.101.0.1:3000 11 1507 1 2025-11-15 10:58:58.007 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:41090 10 6452 1 2025-11-15 10:59:58.227 00:00:10.145 TCP 1.101.0.1:3000 -> 22.102.0.1:55386 10 6452 1 2025-11-15 11:00:00.522 00:00:10.367 TCP 23.104.0.1:59452 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:00:58.412 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:43628 10 6452 1 2025-11-15 11:01:00.925 00:00:10.386 TCP 23.104.0.1:50072 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:01:58.638 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:57916 10 6452 1 2025-11-15 11:02:01.344 00:00:10.367 TCP 23.104.0.1:47210 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:02:50.676 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:02:50.546 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:02:58.848 00:00:10.193 TCP 1.101.0.1:3000 -> 22.102.0.1:40934 10 6452 1 2025-11-15 11:03:01.744 00:00:10.366 TCP 23.104.0.1:38320 -> 1.101.0.1:3000 11 1507 1 2025-11-15 10:59:57.451 00:05:04.630 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 10:59:57.449 00:05:04.635 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:03:59.084 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:53058 10 6452 1 2025-11-15 11:04:02.147 00:00:10.366 TCP 23.104.0.1:33672 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:04:59.298 00:00:10.150 TCP 1.101.0.1:3000 -> 22.102.0.1:50204 10 6452 1 2025-11-15 11:05:02.553 00:00:10.382 TCP 23.104.0.1:55218 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:05:59.483 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:55062 10 6452 1 2025-11-15 11:06:02.956 00:00:10.365 TCP 23.104.0.1:37962 -> 1.101.0.1:3000 12 1559 1 2025-11-15 11:06:59.699 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:34294 10 6452 1 2025-11-15 11:07:03.358 00:00:10.370 TCP 23.104.0.1:60020 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:07:50.913 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:07:50.801 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:07:59.921 00:00:10.209 TCP 1.101.0.1:3000 -> 22.102.0.1:48710 10 6452 1 2025-11-15 11:08:03.766 00:00:10.375 TCP 23.104.0.1:43970 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:09:00.173 00:00:10.193 TCP 1.101.0.1:3000 -> 22.102.0.1:60926 10 6452 1 2025-11-15 11:09:04.181 00:00:10.365 TCP 23.104.0.1:35668 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:05:57.452 00:05:04.631 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 11:05:57.450 00:05:04.636 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:10:00.407 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:52038 10 6452 1 2025-11-15 11:10:04.586 00:00:10.369 TCP 23.104.0.1:55148 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:11:00.622 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:52552 10 6452 1 2025-11-15 11:11:04.996 00:00:10.833 TCP 23.104.0.1:33674 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:12:00.834 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:36656 10 6452 1 2025-11-15 11:12:05.867 00:00:10.458 TCP 23.104.0.1:45020 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:12:50.957 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:12:51.010 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:13:01.068 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:60142 10 6452 1 2025-11-15 11:13:06.808 00:00:10.363 TCP 23.104.0.1:55588 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:14:01.277 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:38192 10 6452 1 2025-11-15 11:14:07.211 00:00:10.367 TCP 23.104.0.1:39124 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:15:01.489 00:00:10.872 TCP 1.101.0.1:3000 -> 22.102.0.1:59098 10 6452 1 2025-11-15 11:15:07.613 00:00:10.379 TCP 23.104.0.1:44086 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:11:57.451 00:05:04.635 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:11:57.454 00:05:04.630 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 11:16:02.399 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:53730 10 6452 1 2025-11-15 11:16:08.035 00:00:10.368 TCP 23.104.0.1:42156 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:17:02.619 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:45432 10 6452 1 2025-11-15 11:17:08.440 00:00:10.324 TCP 23.104.0.1:49268 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:17:51.013 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:17:50.977 00:00:00.030 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:18:02.829 00:00:10.149 TCP 1.101.0.1:3000 -> 22.102.0.1:48468 10 6452 1 2025-11-15 11:18:08.801 00:00:10.681 TCP 23.104.0.1:41988 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:19:03.025 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:52168 10 6452 1 2025-11-15 11:19:09.521 00:00:10.370 TCP 23.104.0.1:38936 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:20:03.202 00:00:10.281 TCP 1.101.0.1:3000 -> 22.102.0.1:53494 10 6452 1 2025-11-15 11:20:09.925 00:00:10.374 TCP 23.104.0.1:44634 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:21:03.569 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:54430 10 6452 1 2025-11-15 11:21:10.335 00:00:10.367 TCP 23.104.0.1:43912 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:17:57.457 00:05:04.629 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 11:17:57.455 00:05:04.635 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:22:03.789 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:55638 10 6452 1 2025-11-15 11:22:10.738 00:00:10.362 TCP 23.104.0.1:51280 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:22:51.230 00:00:00.030 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:22:51.112 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:23:04.008 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:38680 10 6452 1 2025-11-15 11:23:11.136 00:00:10.325 TCP 23.104.0.1:59706 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:24:04.234 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:34212 10 6452 1 2025-11-15 11:24:11.500 00:00:10.338 TCP 23.104.0.1:54464 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:25:04.448 00:00:10.952 TCP 1.101.0.1:3000 -> 22.102.0.1:57046 10 6452 1 2025-11-15 11:25:11.872 00:00:10.394 TCP 23.104.0.1:41288 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:26:05.438 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:39758 10 6452 1 2025-11-15 11:26:12.301 00:00:10.368 TCP 23.104.0.1:57352 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:27:05.645 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:48046 10 6452 1 2025-11-15 11:27:12.715 00:00:10.377 TCP 23.104.0.1:53010 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:27:51.346 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:27:51.213 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:23:57.457 00:05:04.630 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 11:23:57.454 00:05:04.635 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:28:05.856 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:34460 10 6452 1 2025-11-15 11:28:13.131 00:00:10.377 TCP 23.104.0.1:44254 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:29:06.086 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:55422 10 6452 1 2025-11-15 11:29:13.548 00:00:10.365 TCP 23.104.0.1:59258 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:30:06.297 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:33724 10 6452 1 2025-11-15 11:30:13.951 00:00:10.369 TCP 23.104.0.1:52584 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:31:06.515 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:33130 10 6452 1 2025-11-15 11:31:14.371 00:00:10.365 TCP 23.104.0.1:51852 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:32:06.733 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:54930 10 6452 1 2025-11-15 11:32:14.783 00:00:10.355 TCP 23.104.0.1:47232 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:32:51.454 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:32:51.417 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:33:06.948 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:51612 10 6452 1 2025-11-15 11:33:15.180 00:00:10.362 TCP 23.104.0.1:50000 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:29:57.457 00:05:04.634 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:29:57.460 00:05:04.629 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 11:34:07.178 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:42342 10 6452 1 2025-11-15 11:34:15.581 00:00:10.366 TCP 23.104.0.1:42750 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:35:07.391 00:00:10.812 TCP 1.101.0.1:3000 -> 22.102.0.1:52820 10 6452 1 2025-11-15 11:35:15.987 00:00:10.372 TCP 23.104.0.1:49892 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:36:08.238 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:42280 10 6452 1 2025-11-15 11:36:16.392 00:00:10.366 TCP 23.104.0.1:41662 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:37:08.450 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:58134 10 6452 1 2025-11-15 11:37:16.794 00:00:10.364 TCP 23.104.0.1:41140 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:37:51.300 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:37:51.516 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:38:08.668 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:38474 10 6452 1 2025-11-15 11:38:17.194 00:00:10.325 TCP 23.104.0.1:51028 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:39:08.881 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:54476 10 6452 1 2025-11-15 11:39:17.557 00:00:10.363 TCP 23.104.0.1:56722 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:35:57.459 00:05:04.633 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:35:57.462 00:05:04.628 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 11:40:09.080 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:34778 10 6452 1 2025-11-15 11:40:17.958 00:00:10.375 TCP 23.104.0.1:55520 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:41:09.304 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:42524 10 6452 1 2025-11-15 11:41:18.374 00:00:10.570 TCP 23.104.0.1:56374 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:42:09.523 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:55696 10 6452 1 2025-11-15 11:42:18.980 00:00:10.330 TCP 23.104.0.1:39416 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:42:51.653 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:42:51.526 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:43:09.747 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:60840 10 6452 1 2025-11-15 11:43:19.351 00:00:10.327 TCP 23.104.0.1:48824 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:44:09.965 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:39304 12 6556 1 2025-11-15 11:44:19.711 00:00:10.363 TCP 23.104.0.1:55692 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:45:10.194 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:52088 10 6452 1 2025-11-15 11:45:20.120 00:00:10.396 TCP 23.104.0.1:43682 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:41:57.467 00:05:04.626 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:41:57.470 00:05:04.621 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 11:46:10.416 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:57532 10 6452 1 2025-11-15 11:46:20.576 00:00:10.377 TCP 23.104.0.1:33666 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:47:10.640 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:45834 10 6452 1 2025-11-15 11:47:20.991 00:00:10.332 TCP 23.104.0.1:49722 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:47:51.641 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:47:51.871 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:48:10.862 00:00:10.199 TCP 1.101.0.1:3000 -> 22.102.0.1:53704 10 6452 1 2025-11-15 11:48:21.357 00:00:10.368 TCP 23.104.0.1:50976 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:49:11.100 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:50352 10 6452 1 2025-11-15 11:49:21.764 00:00:10.379 TCP 23.104.0.1:44438 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:50:11.325 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:52992 10 6452 1 2025-11-15 11:50:22.183 00:00:10.773 TCP 23.104.0.1:58744 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:51:11.553 00:00:10.196 TCP 1.101.0.1:3000 -> 22.102.0.1:44216 10 6452 1 2025-11-15 11:51:22.986 00:00:10.366 TCP 23.104.0.1:41486 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:47:57.468 00:05:04.634 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:47:57.471 00:05:04.622 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 11:52:11.786 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:38890 10 6452 1 2025-11-15 11:52:23.395 00:00:10.367 TCP 23.104.0.1:52390 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:52:51.704 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:52:51.703 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:53:12.001 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:54476 10 6452 1 2025-11-15 11:53:23.800 00:00:10.365 TCP 23.104.0.1:54374 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:54:12.223 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:54150 10 6452 1 2025-11-15 11:54:24.207 00:00:10.324 TCP 23.104.0.1:43192 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:55:12.445 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:45620 10 6452 1 2025-11-15 11:55:24.566 00:00:10.364 TCP 23.104.0.1:57044 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:56:12.666 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:50748 10 6452 1 2025-11-15 11:56:24.969 00:00:10.368 TCP 23.104.0.1:58712 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:57:12.881 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:50732 10 6452 1 2025-11-15 11:57:25.378 00:00:10.323 TCP 23.104.0.1:52444 -> 1.101.0.1:3000 11 1507 1 2025-11-15 11:57:51.919 00:00:00.017 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-15 11:57:52.066 00:00:00.042 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-15 11:53:57.471 00:05:04.627 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-15 11:53:57.474 00:05:04.622 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-15 11:58:13.083 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:57452 10 6452 1 2025-11-15 11:58:25.740 00:00:10.369 TCP 23.104.0.1:34850 -> 1.101.0.1:3000 11 1507 1 Summary: total flows: 164, total bytes: 498504, total packets: 1575, avg bps: 1106, avg pps: 0, avg bpp: 316 Time window: 2025-11-15 10:58:58 - 2025-11-15 11:59:02 Total flows processed: 164, passed: 164, Blocks skipped: 0, Bytes read: 17120 Sys: 0.0057s User: 0.0009s Wall: 0.0029s flows/second: 56396.3 Runtime: 0.0029s