Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-11-29 15:58:57.755 00:00:10.136 TCP 1.101.0.1:3000 -> 22.102.0.1:43202 10 6452 1 2025-11-29 15:55:05.398 00:05:04.738 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 15:55:05.400 00:05:04.733 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 15:59:05.164 00:00:10.362 TCP 23.104.0.1:53864 -> 1.101.0.1:3000 11 1507 1 2025-11-29 15:59:42.671 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 15:59:42.750 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 15:59:57.929 00:00:10.205 TCP 1.101.0.1:3000 -> 22.102.0.1:54796 10 6452 1 2025-11-29 16:00:05.582 00:00:10.366 TCP 23.104.0.1:57658 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:00:58.171 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:36498 10 6452 1 2025-11-29 16:01:05.994 00:00:10.365 TCP 23.104.0.1:34760 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:01:58.382 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:42400 10 6452 1 2025-11-29 16:02:06.401 00:00:10.319 TCP 23.104.0.1:49170 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:02:58.600 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:45064 10 6452 1 2025-11-29 16:03:06.758 00:00:10.384 TCP 23.104.0.1:59530 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:03:58.826 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:43160 10 6452 1 2025-11-29 16:04:07.177 00:00:10.325 TCP 23.104.0.1:39438 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:04:42.980 00:00:00.024 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:04:42.729 00:00:00.024 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:01:05.400 00:05:04.737 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 16:04:59.067 00:00:10.836 TCP 1.101.0.1:3000 -> 22.102.0.1:39656 10 6452 1 2025-11-29 16:01:05.403 00:05:04.731 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 16:05:07.542 00:00:10.375 TCP 23.104.0.1:50716 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:05:59.941 00:00:10.211 TCP 1.101.0.1:3000 -> 22.102.0.1:42320 10 6452 1 2025-11-29 16:06:07.956 00:00:10.369 TCP 23.104.0.1:60276 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:07:00.189 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:34702 10 6452 1 2025-11-29 16:07:08.329 00:00:10.374 TCP 23.104.0.1:49710 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:08:00.406 00:00:10.180 TCP 1.101.0.1:3000 -> 22.102.0.1:41374 10 6452 1 2025-11-29 16:08:08.737 00:00:10.371 TCP 23.104.0.1:54402 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:09:00.629 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:36830 10 6452 1 2025-11-29 16:09:09.152 00:00:10.370 TCP 23.104.0.1:32802 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:09:43.088 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:09:42.881 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:10:00.847 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:59268 10 6452 1 2025-11-29 16:10:09.561 00:00:10.361 TCP 23.104.0.1:34430 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:07:05.403 00:05:04.734 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 16:11:01.079 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:50730 10 6452 1 2025-11-29 16:07:05.401 00:05:04.739 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 16:11:09.961 00:00:10.365 TCP 23.104.0.1:37706 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:12:01.283 00:00:10.166 TCP 1.101.0.1:3000 -> 22.102.0.1:60716 10 6452 1 2025-11-29 16:12:10.366 00:00:10.371 TCP 23.104.0.1:45240 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:13:01.486 00:00:10.139 TCP 1.101.0.1:3000 -> 22.102.0.1:59040 10 6452 1 2025-11-29 16:13:10.772 00:00:10.370 TCP 23.104.0.1:53420 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:14:01.665 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:53534 10 6452 1 2025-11-29 16:14:11.181 00:00:10.385 TCP 23.104.0.1:53412 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:14:43.044 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:14:43.109 00:00:00.041 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:15:01.878 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:51070 10 6452 1 2025-11-29 16:15:11.606 00:00:10.365 TCP 23.104.0.1:52248 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:16:02.101 00:00:10.173 TCP 1.101.0.1:3000 -> 22.102.0.1:34078 10 6452 1 2025-11-29 16:16:12.013 00:00:10.362 TCP 23.104.0.1:46974 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:13:05.406 00:05:04.735 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 16:13:05.408 00:05:04.730 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 16:17:02.309 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:44736 10 6452 1 2025-11-29 16:17:12.415 00:00:10.368 TCP 23.104.0.1:49796 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:18:02.529 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:43546 10 6452 1 2025-11-29 16:18:12.818 00:00:10.367 TCP 23.104.0.1:52070 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:19:02.752 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:35960 10 6452 1 2025-11-29 16:19:13.223 00:00:10.365 TCP 23.104.0.1:60244 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:19:43.117 00:00:00.023 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:19:43.176 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:20:02.969 00:00:10.184 TCP 1.101.0.1:3000 -> 22.102.0.1:34312 10 6452 1 2025-11-29 16:20:13.628 00:00:10.366 TCP 23.104.0.1:53808 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:21:03.194 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:60206 10 6452 1 2025-11-29 16:21:14.033 00:00:10.365 TCP 23.104.0.1:59178 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:22:03.407 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:55096 10 6452 1 2025-11-29 16:22:14.438 00:00:10.321 TCP 23.104.0.1:52924 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:19:05.410 00:05:04.730 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 16:19:05.407 00:05:04.735 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 16:23:03.631 00:00:10.194 TCP 1.101.0.1:3000 -> 22.102.0.1:33588 10 6452 1 2025-11-29 16:23:14.798 00:00:10.331 TCP 23.104.0.1:43940 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:24:03.875 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:44212 10 6452 1 2025-11-29 16:24:15.169 00:00:10.323 TCP 23.104.0.1:51172 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:24:43.295 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:24:43.028 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:25:04.100 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:46934 10 6452 1 2025-11-29 16:25:15.533 00:00:10.322 TCP 23.104.0.1:33468 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:26:04.335 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:50398 10 6452 1 2025-11-29 16:26:15.898 00:00:10.864 TCP 23.104.0.1:57532 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:27:04.549 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:42316 10 6452 1 2025-11-29 16:27:16.802 00:00:10.369 TCP 23.104.0.1:49072 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:28:04.776 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:52516 10 6452 1 2025-11-29 16:28:17.213 00:00:10.369 TCP 23.104.0.1:39066 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:25:05.410 00:05:04.733 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 16:25:05.407 00:05:04.737 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 16:29:05.005 00:00:10.175 TCP 1.101.0.1:3000 -> 22.102.0.1:51422 10 6452 1 2025-11-29 16:29:17.618 00:00:10.368 TCP 23.104.0.1:59652 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:29:43.891 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:29:43.210 00:00:00.025 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:30:05.219 00:00:10.178 TCP 1.101.0.1:3000 -> 22.102.0.1:55924 10 6452 1 2025-11-29 16:30:18.024 00:00:10.361 TCP 23.104.0.1:59130 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:31:05.434 00:00:10.130 TCP 1.101.0.1:3000 -> 22.102.0.1:46840 10 6452 1 2025-11-29 16:31:18.425 00:00:10.371 TCP 23.104.0.1:50626 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:32:05.606 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:46126 10 6452 1 2025-11-29 16:32:18.836 00:00:10.389 TCP 23.104.0.1:45592 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:33:05.779 00:00:10.137 TCP 1.101.0.1:3000 -> 22.102.0.1:49690 10 6452 1 2025-11-29 16:33:19.274 00:00:10.360 TCP 23.104.0.1:40638 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:34:05.955 00:00:10.187 TCP 1.101.0.1:3000 -> 22.102.0.1:50576 10 6452 1 2025-11-29 16:34:19.673 00:00:10.371 TCP 23.104.0.1:37140 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:34:43.516 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:34:43.471 00:00:00.021 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:31:05.410 00:05:04.737 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 16:31:05.413 00:05:04.732 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 16:35:06.185 00:00:10.192 TCP 1.101.0.1:3000 -> 22.102.0.1:37196 10 6452 1 2025-11-29 16:35:20.106 00:00:10.361 TCP 23.104.0.1:45916 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:36:06.411 00:00:10.186 TCP 1.101.0.1:3000 -> 22.102.0.1:52544 10 6452 1 2025-11-29 16:36:20.511 00:00:10.372 TCP 23.104.0.1:53992 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:37:06.636 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:59928 11 6492 1 2025-11-29 16:37:20.918 00:00:10.353 TCP 23.104.0.1:49614 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:38:06.860 00:00:10.203 TCP 1.101.0.1:3000 -> 22.102.0.1:39458 10 6452 1 2025-11-29 16:38:21.307 00:00:10.376 TCP 23.104.0.1:53550 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:39:07.103 00:00:10.174 TCP 1.101.0.1:3000 -> 22.102.0.1:54176 10 6452 1 2025-11-29 16:39:21.717 00:00:10.380 TCP 23.104.0.1:52642 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:39:43.549 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:39:43.481 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:40:07.314 00:00:10.177 TCP 1.101.0.1:3000 -> 22.102.0.1:40124 10 6452 1 2025-11-29 16:40:22.137 00:00:10.373 TCP 23.104.0.1:58988 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:37:05.412 00:05:04.736 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 16:37:05.414 00:05:04.732 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 16:41:07.528 00:00:10.599 TCP 1.101.0.1:3000 -> 22.102.0.1:44580 10 6452 1 2025-11-29 16:41:22.545 00:00:10.370 TCP 23.104.0.1:53270 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:42:08.172 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:38846 10 6452 1 2025-11-29 16:42:22.956 00:00:10.383 TCP 23.104.0.1:40586 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:43:08.396 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:47740 10 6452 1 2025-11-29 16:43:23.376 00:00:10.323 TCP 23.104.0.1:58776 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:44:08.618 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:35808 10 6452 1 2025-11-29 16:44:23.738 00:00:10.740 TCP 23.104.0.1:56362 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:44:43.666 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:44:43.700 00:00:00.023 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:45:08.839 00:00:10.188 TCP 1.101.0.1:3000 -> 22.102.0.1:59204 10 6452 1 2025-11-29 16:45:24.522 00:00:10.367 TCP 23.104.0.1:55326 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:46:09.083 00:00:10.141 TCP 1.101.0.1:3000 -> 22.102.0.1:59154 10 6452 1 2025-11-29 16:46:24.924 00:00:10.394 TCP 23.104.0.1:45664 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:43:05.418 00:05:04.730 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 16:43:05.417 00:05:04.735 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 16:47:09.263 00:00:10.134 TCP 1.101.0.1:3000 -> 22.102.0.1:58954 10 6452 1 2025-11-29 16:47:25.359 00:00:10.362 TCP 23.104.0.1:58614 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:48:09.434 00:00:10.727 TCP 1.101.0.1:3000 -> 22.102.0.1:46646 10 6452 1 2025-11-29 16:48:25.758 00:00:10.381 TCP 23.104.0.1:42088 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:49:10.204 00:00:10.172 TCP 1.101.0.1:3000 -> 22.102.0.1:56518 10 6452 1 2025-11-29 16:49:26.182 00:00:10.364 TCP 23.104.0.1:35906 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:49:43.775 00:00:00.022 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:49:43.704 00:00:00.022 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:50:10.424 00:00:10.196 TCP 1.101.0.1:3000 -> 22.102.0.1:60092 10 6452 1 2025-11-29 16:50:26.582 00:00:10.370 TCP 23.104.0.1:42058 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:51:10.660 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:58436 10 6452 1 2025-11-29 16:51:26.991 00:00:10.367 TCP 23.104.0.1:57158 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:52:10.877 00:00:10.138 TCP 1.101.0.1:3000 -> 22.102.0.1:34384 10 6452 1 2025-11-29 16:52:27.395 00:00:10.367 TCP 23.104.0.1:54484 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:49:05.423 00:05:04.729 TCP 179.1.22.22:39396 -> 179.1.22.1:179 12 738 1 2025-11-29 16:49:05.421 00:05:04.735 TCP 179.1.22.1:179 -> 179.1.22.22:39396 12 738 1 2025-11-29 16:53:11.080 00:00:10.182 TCP 1.101.0.1:3000 -> 22.102.0.1:38748 10 6452 1 2025-11-29 16:53:27.799 00:00:10.371 TCP 23.104.0.1:34098 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:54:11.298 00:00:10.185 TCP 1.101.0.1:3000 -> 22.102.0.1:36838 10 6452 1 2025-11-29 16:54:28.212 00:00:10.332 TCP 23.104.0.1:60710 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:54:43.976 00:00:00.021 ICMP 4.0.198.2:0 -> 22.102.0.1:8.0 3 252 1 2025-11-29 16:54:43.964 00:00:00.029 ICMP 23.107.0.1:0 -> 1.0.198.2:0.0 3 252 1 2025-11-29 16:55:11.526 00:00:10.711 TCP 1.101.0.1:3000 -> 22.102.0.1:36944 10 6452 1 2025-11-29 16:55:28.577 00:00:10.364 TCP 23.104.0.1:54224 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:56:12.278 00:00:10.181 TCP 1.101.0.1:3000 -> 22.102.0.1:55096 10 6452 1 2025-11-29 16:56:28.983 00:00:10.364 TCP 23.104.0.1:55636 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:57:12.496 00:00:10.179 TCP 1.101.0.1:3000 -> 22.102.0.1:60506 10 6452 1 2025-11-29 16:57:29.388 00:00:10.364 TCP 23.104.0.1:57522 -> 1.101.0.1:3000 11 1507 1 2025-11-29 16:58:12.715 00:00:10.176 TCP 1.101.0.1:3000 -> 22.102.0.1:45856 10 6452 1 2025-11-29 16:58:29.787 00:00:10.361 TCP 23.104.0.1:51994 -> 1.101.0.1:3000 11 1507 1 Summary: total flows: 164, total bytes: 498388, total packets: 1573, avg bps: 1045, avg pps: 0, avg bpp: 316 Time window: 2025-11-29 15:55:05 - 2025-11-29 16:58:40 Total flows processed: 164, passed: 164, Blocks skipped: 0, Bytes read: 17120 Sys: 0.0048s User: 0.0010s Wall: 0.0021s flows/second: 78883.7 Runtime: 0.0021s