Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-11-28 07:59:04.155 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 07:58:52.822 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:58436 10 6452 1 2025-11-28 07:59:04.244 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 07:59:30.036 00:00:10.368 TCP 23.104.0.1:45420 -> 1.101.0.1:3000 11 1507 1 2025-11-28 07:59:53.042 00:00:10.335 TCP 1.101.0.1:3000 -> 22.102.0.1:37208 10 6452 1 2025-11-28 07:56:04.830 00:05:04.610 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 07:56:04.833 00:05:04.605 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:00:30.444 00:00:10.325 TCP 23.104.0.1:35652 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:00:53.415 00:00:10.143 TCP 1.101.0.1:3000 -> 22.102.0.1:49200 10 6452 1 2025-11-28 08:01:30.806 00:00:10.364 TCP 23.104.0.1:46382 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:01:53.599 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:46420 10 6452 1 2025-11-28 08:02:31.207 00:00:10.331 TCP 23.104.0.1:46394 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:02:53.812 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:33906 10 6452 1 2025-11-28 08:03:31.580 00:00:10.325 TCP 23.104.0.1:37884 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:04:04.742 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:03:54.044 00:00:10.168 TCP 1.101.0.1:3000 -> 22.102.0.1:55484 10 6452 1 2025-11-28 08:04:04.961 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:04:31.942 00:00:10.372 TCP 23.104.0.1:39092 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:04:54.256 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:33812 10 6452 1 2025-11-28 08:05:32.352 00:00:10.326 TCP 23.104.0.1:50314 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:05:54.466 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:45022 10 6452 1 2025-11-28 08:02:04.831 00:05:04.616 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 08:02:04.834 00:05:04.611 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:06:32.718 00:00:10.377 TCP 23.104.0.1:50340 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:06:54.676 00:00:10.149 TCP 1.101.0.1:3000 -> 22.102.0.1:55164 10 6452 1 2025-11-28 08:07:33.133 00:00:10.367 TCP 23.104.0.1:56702 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:07:54.866 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:57072 10 6452 1 2025-11-28 08:08:33.538 00:00:10.366 TCP 23.104.0.1:46006 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:08:55.093 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:46612 10 6452 1 2025-11-28 08:09:04.589 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:09:04.554 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:09:33.948 00:00:10.329 TCP 23.104.0.1:35022 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:09:55.262 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:57664 10 6452 1 2025-11-28 08:10:34.314 00:00:10.365 TCP 23.104.0.1:42444 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:10:55.477 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:36378 10 6452 1 2025-11-28 08:11:34.717 00:00:10.379 TCP 23.104.0.1:34056 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:11:55.684 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:42476 10 6452 1 2025-11-28 08:08:04.836 00:05:04.608 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:08:04.834 00:05:04.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 08:12:35.139 00:00:10.368 TCP 23.104.0.1:47698 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:12:55.901 00:00:10.515 TCP 1.101.0.1:3000 -> 22.102.0.1:53042 10 6452 1 2025-11-28 08:13:35.542 00:00:10.369 TCP 23.104.0.1:57992 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:13:56.455 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:42602 10 6452 1 2025-11-28 08:14:04.390 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:14:04.286 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:14:35.947 00:00:10.369 TCP 23.104.0.1:39718 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:14:56.667 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:45908 10 6452 1 2025-11-28 08:15:36.354 00:00:10.369 TCP 23.104.0.1:39028 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:15:56.880 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:58862 10 6452 1 2025-11-28 08:16:36.762 00:00:10.454 TCP 23.104.0.1:58164 -> 1.101.0.1:3000 15 1926 1 2025-11-28 08:16:57.111 00:00:10.205 TCP 1.101.0.1:3000 -> 22.102.0.1:34274 12 10375 1 2025-11-28 08:17:37.251 00:00:10.363 TCP 23.104.0.1:45660 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:17:57.354 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:41474 10 6452 1 2025-11-28 08:14:04.836 00:05:04.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 08:14:04.837 00:05:04.608 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:18:37.654 00:00:10.367 TCP 23.104.0.1:50920 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:19:04.609 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:19:04.633 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:18:57.574 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:50466 10 6452 1 2025-11-28 08:19:38.075 00:00:10.371 TCP 23.104.0.1:57230 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:19:57.790 00:00:10.155 TCP 1.101.0.1:3000 -> 22.102.0.1:47122 10 6452 1 2025-11-28 08:20:38.487 00:00:10.363 TCP 23.104.0.1:59248 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:20:57.996 00:00:10.234 TCP 1.101.0.1:3000 -> 22.102.0.1:38424 10 6452 1 2025-11-28 08:21:38.887 00:00:10.382 TCP 23.104.0.1:56852 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:21:58.281 00:00:10.465 TCP 1.101.0.1:3000 -> 22.102.0.1:48416 10 6452 1 2025-11-28 08:22:39.305 00:00:10.373 TCP 23.104.0.1:50838 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:22:58.785 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:54076 10 6452 1 2025-11-28 08:23:39.721 00:00:10.331 TCP 23.104.0.1:40858 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:24:05.137 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:24:04.983 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:20:04.837 00:05:04.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 08:23:59.008 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:43386 10 6452 1 2025-11-28 08:20:04.840 00:05:04.607 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:24:40.109 00:00:10.325 TCP 23.104.0.1:33660 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:24:59.227 00:00:10.143 TCP 1.101.0.1:3000 -> 22.102.0.1:54130 10 6452 1 2025-11-28 08:25:40.475 00:00:10.363 TCP 23.104.0.1:38536 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:25:59.413 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:42342 10 6452 1 2025-11-28 08:26:40.873 00:00:10.373 TCP 23.104.0.1:46124 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:26:59.619 00:00:10.142 TCP 1.101.0.1:3000 -> 22.102.0.1:50960 10 6452 1 2025-11-28 08:27:41.283 00:00:10.364 TCP 23.104.0.1:41012 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:27:59.800 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:59100 10 6452 1 2025-11-28 08:28:41.686 00:00:10.325 TCP 23.104.0.1:51620 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:29:04.618 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:29:04.794 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:29:00.019 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:38278 10 6452 1 2025-11-28 08:29:42.054 00:00:10.364 TCP 23.104.0.1:56398 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:26:04.840 00:05:04.608 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:30:00.227 00:00:10.171 TCP 1.101.0.1:3000 -> 22.102.0.1:40398 10 6452 1 2025-11-28 08:26:04.838 00:05:04.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 08:30:42.458 00:00:10.375 TCP 23.104.0.1:46014 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:31:00.439 00:00:10.169 TCP 1.101.0.1:3000 -> 22.102.0.1:57038 10 6452 1 2025-11-28 08:31:42.875 00:00:10.327 TCP 23.104.0.1:38536 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:32:00.649 00:00:10.132 TCP 1.101.0.1:3000 -> 22.102.0.1:54068 10 6452 1 2025-11-28 08:32:43.243 00:00:10.364 TCP 23.104.0.1:48394 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:33:00.826 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:39656 10 6452 1 2025-11-28 08:33:43.658 00:00:10.369 TCP 23.104.0.1:48256 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:34:04.592 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:34:04.942 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:34:01.064 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:43484 10 6452 1 2025-11-28 08:34:44.083 00:00:10.329 TCP 23.104.0.1:56596 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:35:01.284 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:33990 10 6452 1 2025-11-28 08:35:44.455 00:00:10.325 TCP 23.104.0.1:60182 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:36:01.508 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:44254 10 6452 1 2025-11-28 08:32:04.839 00:05:04.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 08:32:04.842 00:05:04.608 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:36:44.819 00:00:10.367 TCP 23.104.0.1:52444 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:37:01.718 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:46976 10 6452 1 2025-11-28 08:37:45.222 00:00:10.364 TCP 23.104.0.1:55986 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:38:01.938 00:00:10.208 TCP 1.101.0.1:3000 -> 22.102.0.1:51628 10 6452 1 2025-11-28 08:38:45.624 00:00:10.364 TCP 23.104.0.1:37868 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:39:05.044 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:39:05.197 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:39:02.186 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:39790 10 6452 1 2025-11-28 08:39:46.027 00:00:10.368 TCP 23.104.0.1:52236 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:40:02.405 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:52728 10 6452 1 2025-11-28 08:40:46.434 00:00:10.393 TCP 23.104.0.1:49672 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:41:02.628 00:00:10.530 TCP 1.101.0.1:3000 -> 22.102.0.1:58510 10 6452 1 2025-11-28 08:41:46.862 00:00:10.375 TCP 23.104.0.1:34360 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:38:04.842 00:05:04.608 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:38:04.840 00:05:04.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 08:42:03.201 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:34586 10 6452 1 2025-11-28 08:42:47.276 00:00:10.326 TCP 23.104.0.1:48738 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:43:03.422 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:34850 10 6452 1 2025-11-28 08:43:47.643 00:00:10.317 TCP 23.104.0.1:34336 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:44:05.638 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:44:05.564 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:44:03.638 00:00:10.208 TCP 1.101.0.1:3000 -> 22.102.0.1:58836 10 6452 1 2025-11-28 08:44:47.998 00:00:10.363 TCP 23.104.0.1:50404 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:45:03.898 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:40936 10 6452 1 2025-11-28 08:45:48.400 00:00:10.411 TCP 23.104.0.1:56496 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:46:04.127 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:41698 10 6452 1 2025-11-28 08:46:48.850 00:00:10.380 TCP 23.104.0.1:57588 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:47:04.345 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:54998 10 6452 1 2025-11-28 08:47:49.268 00:00:10.365 TCP 23.104.0.1:55762 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:44:04.843 00:05:04.613 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 08:44:04.846 00:05:04.608 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:48:04.561 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:38492 10 6452 1 2025-11-28 08:49:05.299 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:48:49.675 00:00:10.359 TCP 23.104.0.1:44218 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:49:05.305 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:49:04.781 00:00:10.183 TCP 1.101.0.1:3000 -> 22.102.0.1:56118 10 6452 1 2025-11-28 08:49:50.104 00:00:10.360 TCP 23.104.0.1:49860 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:50:04.997 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:48126 10 6452 1 2025-11-28 08:50:50.500 00:00:10.368 TCP 23.104.0.1:57310 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:51:05.211 00:00:10.170 TCP 1.101.0.1:3000 -> 22.102.0.1:37842 10 6452 1 2025-11-28 08:51:50.904 00:00:11.040 TCP 23.104.0.1:58680 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:52:05.424 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:46884 10 6452 1 2025-11-28 08:52:51.979 00:00:10.381 TCP 23.104.0.1:39322 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:53:05.641 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:59356 10 6452 1 2025-11-28 08:53:52.398 00:00:10.361 TCP 23.104.0.1:60342 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:54:05.178 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-28 08:54:05.200 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-28 08:50:04.847 00:05:04.611 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-28 08:50:04.846 00:05:04.616 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-28 08:54:05.865 00:00:10.191 TCP 1.101.0.1:3000 -> 22.102.0.1:46158 10 6452 1 2025-11-28 08:54:52.796 00:00:10.365 TCP 23.104.0.1:51268 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:55:06.090 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:50616 10 6452 1 2025-11-28 08:55:53.202 00:00:10.364 TCP 23.104.0.1:44958 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:56:06.310 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:33962 10 6452 1 2025-11-28 08:56:53.607 00:00:10.364 TCP 23.104.0.1:49874 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:57:06.531 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:45704 10 6452 1 2025-11-28 08:57:54.019 00:00:10.366 TCP 23.104.0.1:60828 -> 1.101.0.1:3000 11 1507 1 2025-11-28 08:58:06.755 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:34298 10 6452 1 Summary: total flows: 163, total bytes: 501183, total packets: 1567, avg bps: 1074, avg pps: 0, avg bpp: 319 Time window: 2025-11-28 07:56:04 - 2025-11-28 08:58:16 Total flows processed: 163, passed: 163, Blocks skipped: 0, Bytes read: 17016 Sys: 0.0032s User: 0.0022s Wall: 0.0023s flows/second: 71491.3 Runtime: 0.0023s