Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-11-28 02:58:58.419 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 02:58:58.321 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 02:59:08.099 00:00:10.365 TCP 23.104.0.1:39366 -> 1.101.0.1:3000 11 1507 1 2025-11-28 02:59:40.384 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:40182 10 6452 1 2025-11-28 02:56:04.754 00:05:04.565 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 02:56:04.752 00:05:04.571 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:00:08.508 00:00:10.361 TCP 23.104.0.1:46692 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:00:40.563 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:38654 10 6452 1 2025-11-28 03:01:08.910 00:00:10.361 TCP 23.104.0.1:34416 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:01:40.773 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:41814 10 6452 1 2025-11-28 03:02:09.313 00:00:10.365 TCP 23.104.0.1:41008 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:02:40.982 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:33864 10 6452 1 2025-11-28 03:03:09.722 00:00:10.378 TCP 23.104.0.1:38134 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:03:41.219 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:38454 10 6452 1 2025-11-28 03:03:58.506 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:03:57.966 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:04:10.136 00:00:10.364 TCP 23.104.0.1:42028 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:04:41.427 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:55278 10 6452 1 2025-11-28 03:05:10.537 00:00:10.370 TCP 23.104.0.1:54528 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:05:41.644 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:59334 10 6452 1 2025-11-28 03:02:04.755 00:05:04.566 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 03:02:04.752 00:05:04.571 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:06:10.947 00:00:11.375 TCP 23.104.0.1:41906 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:06:41.857 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:38506 10 6452 1 2025-11-28 03:07:12.358 00:00:10.362 TCP 23.104.0.1:55208 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:07:42.035 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:55482 10 6452 1 2025-11-28 03:08:12.757 00:00:10.378 TCP 23.104.0.1:45904 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:08:42.254 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:35130 10 6452 1 2025-11-28 03:08:58.279 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:08:58.412 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:09:13.176 00:00:10.362 TCP 23.104.0.1:58066 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:09:42.468 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:57410 10 6452 1 2025-11-28 03:10:13.576 00:00:10.367 TCP 23.104.0.1:59492 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:10:42.680 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:50826 10 6452 1 2025-11-28 03:11:13.982 00:00:10.403 TCP 23.104.0.1:43232 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:11:42.857 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:39684 10 6452 1 2025-11-28 03:08:04.757 00:05:04.568 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 03:08:04.754 00:05:04.574 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:12:14.425 00:00:10.360 TCP 23.104.0.1:41234 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:12:43.107 00:00:10.141 TCP 1.101.0.1:3000 -> 22.102.0.1:41080 10 6452 1 2025-11-28 03:13:14.824 00:00:10.361 TCP 23.104.0.1:49886 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:13:43.291 00:00:10.625 TCP 1.101.0.1:3000 -> 22.102.0.1:47348 10 6452 1 2025-11-28 03:13:58.380 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:13:58.416 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:14:15.238 00:00:10.368 TCP 23.104.0.1:37034 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:14:43.951 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:48250 10 6452 1 2025-11-28 03:15:15.647 00:00:10.373 TCP 23.104.0.1:42346 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:15:44.182 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:52370 10 6452 1 2025-11-28 03:16:16.093 00:00:10.330 TCP 23.104.0.1:59728 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:16:44.394 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:60762 10 6452 1 2025-11-28 03:17:16.458 00:00:11.342 TCP 23.104.0.1:56734 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:17:44.628 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:45398 10 6452 1 2025-11-28 03:14:04.756 00:05:04.572 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:14:04.759 00:05:04.567 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 03:18:17.842 00:00:10.390 TCP 23.104.0.1:59562 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:18:44.842 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:36928 10 6452 1 2025-11-28 03:18:58.675 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:18:58.614 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:19:18.267 00:00:10.357 TCP 23.104.0.1:41332 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:19:45.083 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:45370 10 6452 1 2025-11-28 03:20:18.666 00:00:10.386 TCP 23.104.0.1:44930 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:20:45.295 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:36556 10 6452 1 2025-11-28 03:21:19.098 00:00:10.364 TCP 23.104.0.1:33540 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:21:45.469 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:51420 11 6492 1 2025-11-28 03:22:19.501 00:00:10.362 TCP 23.104.0.1:38510 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:22:45.687 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:47816 10 6452 1 2025-11-28 03:23:19.905 00:00:10.329 TCP 23.104.0.1:44904 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:23:45.900 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:37232 10 6452 1 2025-11-28 03:23:58.763 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:23:59.193 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:20:04.759 00:05:04.573 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:20:04.760 00:05:04.569 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 03:24:20.283 00:00:10.671 TCP 23.104.0.1:59860 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:24:46.113 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:45762 10 6452 1 2025-11-28 03:25:20.988 00:00:10.327 TCP 23.104.0.1:50942 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:25:46.322 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:41142 10 6452 1 2025-11-28 03:26:21.355 00:00:10.324 TCP 23.104.0.1:45940 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:26:46.537 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:45734 10 6452 1 2025-11-28 03:27:21.718 00:00:10.388 TCP 23.104.0.1:51278 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:27:46.756 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:55908 10 6452 1 2025-11-28 03:28:22.141 00:00:16.904 TCP 23.104.0.1:44366 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:28:58.742 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:28:46.972 00:00:10.205 TCP 1.101.0.1:3000 -> 22.102.0.1:50736 10 6452 1 2025-11-28 03:28:58.819 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:29:29.099 00:00:10.325 TCP 23.104.0.1:34310 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:29:47.213 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:42810 10 6452 1 2025-11-28 03:26:04.759 00:05:04.573 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:26:04.761 00:05:04.569 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 03:30:29.456 00:00:10.366 TCP 23.104.0.1:54332 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:30:47.432 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:37242 10 6452 1 2025-11-28 03:31:29.860 00:00:10.364 TCP 23.104.0.1:45664 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:31:47.656 00:00:10.545 TCP 1.101.0.1:3000 -> 22.102.0.1:54538 10 6452 1 2025-11-28 03:32:30.279 00:00:10.365 TCP 23.104.0.1:60360 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:32:48.239 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:43696 10 6452 1 2025-11-28 03:33:30.679 00:00:10.325 TCP 23.104.0.1:38844 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:33:58.866 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:33:48.408 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:59990 10 6452 1 2025-11-28 03:33:59.017 00:00:00.020 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:34:31.052 00:00:10.322 TCP 23.104.0.1:60598 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:34:48.626 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:56334 10 6452 1 2025-11-28 03:35:31.415 00:00:10.365 TCP 23.104.0.1:53904 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:35:48.841 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:47546 10 6452 1 2025-11-28 03:32:04.761 00:05:04.572 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:32:04.764 00:05:04.568 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 03:36:31.818 00:00:10.322 TCP 23.104.0.1:33404 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:36:49.078 00:00:10.145 TCP 1.101.0.1:3000 -> 22.102.0.1:34570 10 6452 1 2025-11-28 03:37:32.179 00:00:10.374 TCP 23.104.0.1:40334 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:37:49.258 00:00:10.133 TCP 1.101.0.1:3000 -> 22.102.0.1:40260 10 6452 1 2025-11-28 03:38:32.590 00:00:10.371 TCP 23.104.0.1:44394 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:38:49.434 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:37034 10 6452 1 2025-11-28 03:38:58.951 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:38:58.899 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:39:32.996 00:00:10.366 TCP 23.104.0.1:51416 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:39:49.656 00:00:10.560 TCP 1.101.0.1:3000 -> 22.102.0.1:51990 10 6452 1 2025-11-28 03:40:33.399 00:00:10.322 TCP 23.104.0.1:48072 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:40:50.259 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:36030 10 6452 1 2025-11-28 03:41:33.759 00:00:10.368 TCP 23.104.0.1:52018 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:41:50.476 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:48000 10 6452 1 2025-11-28 03:38:04.761 00:05:04.587 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:38:04.765 00:05:04.582 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 03:42:34.161 00:00:10.326 TCP 23.104.0.1:56224 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:42:50.714 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:55064 10 6452 1 2025-11-28 03:43:34.526 00:00:10.323 TCP 23.104.0.1:59254 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:43:59.031 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:43:50.923 00:00:10.163 TCP 1.101.0.1:3000 -> 22.102.0.1:58770 10 6452 1 2025-11-28 03:43:58.990 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:44:34.888 00:00:10.343 TCP 23.104.0.1:48842 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:44:51.125 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:57488 10 6452 1 2025-11-28 03:45:35.273 00:00:10.369 TCP 23.104.0.1:49434 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:45:51.349 00:00:10.190 TCP 1.101.0.1:3000 -> 22.102.0.1:59050 10 6452 1 2025-11-28 03:46:35.674 00:00:10.371 TCP 23.104.0.1:50588 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:46:51.576 00:00:10.144 TCP 1.101.0.1:3000 -> 22.102.0.1:46002 10 6452 1 2025-11-28 03:47:36.109 00:00:10.325 TCP 23.104.0.1:44176 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:47:51.765 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:50242 10 6452 1 2025-11-28 03:44:04.766 00:05:04.583 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 03:44:04.763 00:05:04.587 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:48:36.469 00:00:11.683 TCP 23.104.0.1:52380 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:48:59.152 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:48:59.037 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:48:51.974 00:00:10.163 TCP 1.101.0.1:3000 -> 22.102.0.1:39332 10 6452 1 2025-11-28 03:49:38.189 00:00:10.362 TCP 23.104.0.1:49556 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:49:52.177 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:37886 10 6452 1 2025-11-28 03:50:38.587 00:00:10.360 TCP 23.104.0.1:56934 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:50:52.387 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:59618 10 6452 1 2025-11-28 03:51:38.981 00:00:10.404 TCP 23.104.0.1:56444 -> 1.101.0.1:3000 15 1926 1 2025-11-28 03:51:52.603 00:00:10.198 TCP 1.101.0.1:3000 -> 22.102.0.1:58558 12 10375 1 2025-11-28 03:52:39.426 00:00:10.329 TCP 23.104.0.1:46526 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:52:52.841 00:00:11.708 TCP 1.101.0.1:3000 -> 22.102.0.1:40810 10 6452 1 2025-11-28 03:53:39.791 00:00:10.365 TCP 23.104.0.1:52786 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:53:59.150 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 03:53:59.032 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 03:53:54.588 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:36418 10 6452 1 2025-11-28 03:50:04.767 00:05:04.582 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 03:50:04.765 00:05:04.586 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 03:54:40.195 00:00:10.369 TCP 23.104.0.1:53622 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:54:54.814 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:51566 10 6452 1 2025-11-28 03:55:40.599 00:00:10.368 TCP 23.104.0.1:36500 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:55:55.039 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:38068 10 6452 1 2025-11-28 03:56:41.010 00:00:10.362 TCP 23.104.0.1:52552 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:56:55.269 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:51554 10 6452 1 2025-11-28 03:57:41.407 00:00:10.366 TCP 23.104.0.1:42324 -> 1.101.0.1:3000 11 1507 1 2025-11-28 03:57:55.501 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:60204 10 6452 1 Summary: total flows: 162, total bytes: 494771, total packets: 1558, avg bps: 1063, avg pps: 0, avg bpp: 317 Time window: 2025-11-28 02:56:04 - 2025-11-28 03:58:05 Total flows processed: 162, passed: 162, Blocks skipped: 0, Bytes read: 16912 Sys: 0.0044s User: 0.0011s Wall: 0.0024s flows/second: 68378.5 Runtime: 0.0024s