Date first seen Duration Proto Src IP Addr:Port Dst IP Addr:Port Packets Bytes Flows 2025-11-23 13:58:47.286 00:00:10.362 TCP 1.101.0.1:3000 -> 23.104.0.1:44138 10 6452 1 2025-11-23 13:55:05.087 00:04:00.843 TCP 179.21.23.21:38570 -> 179.21.23.23:179 10 615 1 2025-11-23 13:54:05.084 00:06:00.002 TCP 179.21.23.23:179 -> 179.21.23.21:38570 13 809 1 2025-11-23 13:59:47.687 00:00:10.367 TCP 1.101.0.1:3000 -> 23.104.0.1:45232 10 6452 1 2025-11-23 14:00:48.112 00:00:10.364 TCP 1.101.0.1:3000 -> 23.104.0.1:46520 10 6452 1 2025-11-23 14:01:47.942 00:00:00.021 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:01:47.889 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:01:48.096 00:00:00.024 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:01:48.007 00:00:00.029 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:01:48.179 00:00:00.024 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:01:48.518 00:00:10.376 TCP 1.101.0.1:3000 -> 23.104.0.1:49892 10 6452 1 2025-11-23 14:02:48.933 00:00:10.435 TCP 1.101.0.1:3000 -> 23.104.0.1:56516 10 6452 1 2025-11-23 14:03:49.409 00:00:10.369 TCP 1.101.0.1:3000 -> 23.104.0.1:55834 10 6452 1 2025-11-23 14:04:49.814 00:00:10.333 TCP 1.101.0.1:3000 -> 23.104.0.1:50676 10 6452 1 2025-11-23 14:00:05.088 00:06:00.003 TCP 179.21.23.21:38570 -> 179.21.23.23:179 13 790 1 2025-11-23 14:00:05.935 00:06:00.003 TCP 179.21.23.23:179 -> 179.21.23.21:38570 13 790 1 2025-11-23 14:05:50.187 00:00:10.362 TCP 1.101.0.1:3000 -> 23.104.0.1:39402 10 6452 1 2025-11-23 14:06:47.287 00:00:00.024 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:06:47.217 00:00:00.022 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:06:47.350 00:00:00.023 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:06:47.171 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:06:47.369 00:00:00.025 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:06:50.588 00:00:10.368 TCP 1.101.0.1:3000 -> 23.104.0.1:35538 10 6452 1 2025-11-23 14:07:50.995 00:00:10.364 TCP 1.101.0.1:3000 -> 23.104.0.1:49574 10 6452 1 2025-11-23 14:08:51.397 00:00:10.369 TCP 1.101.0.1:3000 -> 23.104.0.1:55126 10 6452 1 2025-11-23 14:09:51.802 00:00:10.368 TCP 1.101.0.1:3000 -> 23.104.0.1:36374 10 6452 1 2025-11-23 14:10:52.209 00:00:10.364 TCP 1.101.0.1:3000 -> 23.104.0.1:59344 10 6452 1 2025-11-23 14:06:05.934 00:06:00.001 TCP 179.21.23.21:38570 -> 179.21.23.23:179 13 809 1 2025-11-23 14:11:47.696 00:00:00.023 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:11:47.408 00:00:00.021 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:11:47.361 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:11:47.614 00:00:00.023 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:11:47.477 00:00:00.023 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:07:05.089 00:06:00.001 TCP 179.21.23.23:179 -> 179.21.23.21:38570 13 809 1 2025-11-23 14:11:52.616 00:00:10.362 TCP 1.101.0.1:3000 -> 23.104.0.1:51952 10 6452 1 2025-11-23 14:12:53.016 00:00:10.365 TCP 1.101.0.1:3000 -> 23.104.0.1:55648 10 6452 1 2025-11-23 14:13:53.420 00:00:10.369 TCP 1.101.0.1:3000 -> 23.104.0.1:57640 10 6452 1 2025-11-23 14:13:05.939 00:02:00.000 TCP 179.21.23.23:179 -> 179.21.23.21:38570 5 298 1 2025-11-23 14:14:53.830 00:00:10.385 TCP 1.101.0.1:3000 -> 23.104.0.1:34398 10 6452 1 2025-11-23 14:15:54.252 00:00:10.367 TCP 1.101.0.1:3000 -> 23.104.0.1:37206 10 6452 1 2025-11-23 14:16:48.297 00:00:00.023 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:16:47.302 00:00:00.024 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:16:47.407 00:00:00.023 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:16:48.214 00:00:00.023 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:16:47.293 00:00:00.022 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:16:54.656 00:00:10.364 TCP 1.101.0.1:3000 -> 23.104.0.1:50090 10 6452 1 2025-11-23 14:17:55.064 00:00:10.327 TCP 1.101.0.1:3000 -> 23.104.0.1:58468 10 6452 1 2025-11-23 14:13:05.093 00:06:00.000 TCP 179.21.23.21:38570 -> 179.21.23.23:179 13 790 1 2025-11-23 14:18:55.441 00:00:10.326 TCP 1.101.0.1:3000 -> 23.104.0.1:41404 10 6452 1 2025-11-23 14:16:05.090 00:04:00.848 TCP 179.21.23.23:179 -> 179.21.23.21:38570 10 615 1 2025-11-23 14:19:55.807 00:00:10.370 TCP 1.101.0.1:3000 -> 23.104.0.1:38942 10 6452 1 2025-11-23 14:19:05.935 00:02:00.001 TCP 179.21.23.21:38570 -> 179.21.23.23:179 5 317 1 2025-11-23 14:20:56.228 00:00:10.378 TCP 1.101.0.1:3000 -> 23.104.0.1:51204 10 6452 1 2025-11-23 14:21:47.517 00:00:00.024 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:21:47.439 00:00:00.024 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:21:47.600 00:00:00.022 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:21:47.518 00:00:00.022 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:21:47.683 00:00:00.023 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:21:56.650 00:00:10.368 TCP 1.101.0.1:3000 -> 23.104.0.1:36404 10 6452 1 2025-11-23 14:22:57.063 00:00:10.366 TCP 1.101.0.1:3000 -> 23.104.0.1:56638 10 6452 1 2025-11-23 14:23:57.465 00:00:10.369 TCP 1.101.0.1:3000 -> 23.104.0.1:51654 10 6452 1 2025-11-23 14:21:05.092 00:04:00.848 TCP 179.21.23.23:179 -> 179.21.23.21:38570 10 615 1 2025-11-23 14:24:57.866 00:00:10.373 TCP 1.101.0.1:3000 -> 23.104.0.1:39366 10 6452 1 2025-11-23 14:22:05.095 00:04:00.843 TCP 179.21.23.21:38570 -> 179.21.23.23:179 10 615 1 2025-11-23 14:25:58.272 00:00:10.324 TCP 1.101.0.1:3000 -> 23.104.0.1:58508 10 6452 1 2025-11-23 14:26:47.680 00:00:00.025 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:26:48.207 00:00:00.022 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:26:48.171 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:26:47.598 00:00:00.024 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:26:47.614 00:00:00.046 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:26:58.631 00:00:10.365 TCP 1.101.0.1:3000 -> 23.104.0.1:44066 10 6452 1 2025-11-23 14:27:59.032 00:00:10.361 TCP 1.101.0.1:3000 -> 23.104.0.1:41530 10 6452 1 2025-11-23 14:28:59.433 00:00:10.360 TCP 1.101.0.1:3000 -> 23.104.0.1:52916 10 6452 1 2025-11-23 14:29:59.828 00:00:10.363 TCP 1.101.0.1:3000 -> 23.104.0.1:57198 10 6452 1 2025-11-23 14:27:05.095 00:04:00.843 TCP 179.21.23.21:38570 -> 179.21.23.23:179 10 615 1 2025-11-23 14:26:05.092 00:06:00.001 TCP 179.21.23.23:179 -> 179.21.23.21:38570 13 809 1 2025-11-23 14:31:00.227 00:00:10.369 TCP 1.101.0.1:3000 -> 23.104.0.1:42290 10 6452 1 2025-11-23 14:31:47.909 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:31:47.608 00:00:00.023 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:31:47.441 00:00:00.023 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:31:47.828 00:00:00.021 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:31:47.741 00:00:00.022 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:32:00.631 00:00:13.260 TCP 1.101.0.1:3000 -> 23.104.0.1:55780 10 6452 1 2025-11-23 14:33:03.943 00:00:10.370 TCP 1.101.0.1:3000 -> 23.104.0.1:40266 10 6452 1 2025-11-23 14:34:04.349 00:00:10.323 TCP 1.101.0.1:3000 -> 23.104.0.1:55562 10 6452 1 2025-11-23 14:35:04.711 00:00:10.362 TCP 1.101.0.1:3000 -> 23.104.0.1:44832 10 6452 1 2025-11-23 14:36:05.114 00:00:10.445 TCP 1.101.0.1:3000 -> 23.104.0.1:40074 12 10369 1 2025-11-23 14:36:47.805 00:00:00.022 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:36:47.673 00:00:00.023 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:36:47.802 00:00:00.022 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:36:47.721 00:00:00.022 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:36:47.884 00:00:00.023 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:32:05.095 00:06:00.000 TCP 179.21.23.21:38570 -> 179.21.23.23:179 13 790 1 2025-11-23 14:32:05.941 00:06:00.002 TCP 179.21.23.23:179 -> 179.21.23.21:38570 13 790 1 2025-11-23 14:37:05.597 00:00:10.364 TCP 1.101.0.1:3000 -> 23.104.0.1:48888 10 6452 1 2025-11-23 14:38:05.997 00:00:10.324 TCP 1.101.0.1:3000 -> 23.104.0.1:39772 10 6452 1 2025-11-23 14:39:06.358 00:00:10.363 TCP 1.101.0.1:3000 -> 23.104.0.1:60894 10 6452 1 2025-11-23 14:40:06.754 00:00:10.374 TCP 1.101.0.1:3000 -> 23.104.0.1:51782 10 6452 1 2025-11-23 14:41:07.160 00:00:10.366 TCP 1.101.0.1:3000 -> 23.104.0.1:49842 10 6452 1 2025-11-23 14:41:47.913 00:00:00.023 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:41:47.819 00:00:00.022 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:41:47.535 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:41:47.829 00:00:00.023 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:41:47.873 00:00:00.022 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:42:07.563 00:00:10.367 TCP 1.101.0.1:3000 -> 23.104.0.1:34616 10 6452 1 2025-11-23 14:38:05.939 00:06:00.002 TCP 179.21.23.21:38570 -> 179.21.23.23:179 13 809 1 2025-11-23 14:43:07.968 00:00:10.332 TCP 1.101.0.1:3000 -> 23.104.0.1:45572 10 6452 1 2025-11-23 14:39:05.093 00:06:00.001 TCP 179.21.23.23:179 -> 179.21.23.21:38570 13 809 1 2025-11-23 14:44:08.332 00:00:10.362 TCP 1.101.0.1:3000 -> 23.104.0.1:38314 10 6452 1 2025-11-23 14:45:08.730 00:00:10.330 TCP 1.101.0.1:3000 -> 23.104.0.1:57706 10 6452 1 2025-11-23 14:46:09.108 00:00:10.439 TCP 1.101.0.1:3000 -> 23.104.0.1:40878 12 10369 1 2025-11-23 14:46:47.995 00:00:00.023 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:46:48.053 00:00:00.023 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:46:47.847 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:46:47.913 00:00:00.023 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:46:48.134 00:00:00.023 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:45:05.943 00:02:00.003 TCP 179.21.23.23:179 -> 179.21.23.21:38570 5 298 1 2025-11-23 14:47:09.584 00:00:10.367 TCP 1.101.0.1:3000 -> 23.104.0.1:56750 10 6452 1 2025-11-23 14:48:09.991 00:00:10.367 TCP 1.101.0.1:3000 -> 23.104.0.1:40010 10 6452 1 2025-11-23 14:49:10.396 00:00:10.366 TCP 1.101.0.1:3000 -> 23.104.0.1:35308 10 6452 1 2025-11-23 14:45:05.097 00:06:00.001 TCP 179.21.23.21:38570 -> 179.21.23.23:179 13 790 1 2025-11-23 14:50:10.798 00:00:10.333 TCP 1.101.0.1:3000 -> 23.104.0.1:58452 10 6452 1 2025-11-23 14:51:11.170 00:00:10.361 TCP 1.101.0.1:3000 -> 23.104.0.1:35426 10 6452 1 2025-11-23 14:51:48.136 00:00:00.024 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:51:47.966 00:00:00.022 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:51:47.868 00:00:00.023 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:51:48.133 00:00:00.023 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:51:47.951 00:00:00.022 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:48:05.095 00:04:00.853 TCP 179.21.23.23:179 -> 179.21.23.21:38570 10 615 1 2025-11-23 14:52:11.570 00:00:10.367 TCP 1.101.0.1:3000 -> 23.104.0.1:49876 10 6452 1 2025-11-23 14:51:05.945 00:02:00.001 TCP 179.21.23.21:38570 -> 179.21.23.23:179 5 317 1 2025-11-23 14:53:11.973 00:00:10.377 TCP 1.101.0.1:3000 -> 23.104.0.1:35150 10 6452 1 2025-11-23 14:54:12.409 00:00:10.389 TCP 1.101.0.1:3000 -> 23.104.0.1:42814 10 6452 1 2025-11-23 14:55:12.840 00:00:10.390 TCP 1.101.0.1:3000 -> 23.104.0.1:33064 10 6452 1 2025-11-23 14:56:13.269 00:00:10.439 TCP 1.101.0.1:3000 -> 23.104.0.1:45692 12 10375 1 2025-11-23 14:56:48.623 00:00:00.021 ICMP 23.107.0.1:0 -> 21.0.198.2:0.0 3 252 1 2025-11-23 14:56:48.545 00:00:00.023 ICMP 21.0.198.2:0 -> 27.107.0.1:8.0 3 252 1 2025-11-23 14:56:48.092 00:00:00.027 ICMP 1.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:56:48.540 00:00:00.021 ICMP 21.0.198.2:0 -> 23.107.0.1:8.0 3 252 1 2025-11-23 14:56:48.539 00:00:00.022 ICMP 21.0.198.2:0 -> 32.102.0.1:8.0 3 252 1 2025-11-23 14:53:05.097 00:04:00.858 TCP 179.21.23.23:179 -> 179.21.23.21:38570 10 615 1 2025-11-23 14:57:13.744 00:00:10.369 TCP 1.101.0.1:3000 -> 23.104.0.1:54710 10 6452 1 2025-11-23 14:54:05.101 00:04:00.852 TCP 179.21.23.21:38570 -> 179.21.23.23:179 10 615 1 2025-11-23 14:58:14.153 00:00:10.323 TCP 1.101.0.1:3000 -> 23.104.0.1:37492 10 6452 1 Summary: total flows: 144, total bytes: 429741, total packets: 1042, avg bps: 890, avg pps: 0, avg bpp: 412 Time window: 2025-11-23 13:54:05 - 2025-11-23 14:58:24 Total flows processed: 144, passed: 144, Blocks skipped: 0, Bytes read: 15040 Sys: 0.0046s User: 0.0019s Wall: 0.0023s flows/second: 61800.9 Runtime: 0.0023s