Info about 10.0.0.50

Please enable make sure that the ntop html/ directory is properly installed

Info about 10.0.0.50

IP Address 10.0.0.50 [unicast - multihomed ] [ Purge Asset ]

Multihomed Addresses
Custom Host Name

First/Last Seen Fri Sep 13 16:14:39 2024 - Fri Sep 20 08:40:57 2024 [Inactive since 0 sec]

Subnet 10.0.0.0/22

Main Host MAC Address 58:EF:68:09:34:1E

Host Location Local (inside specified/local subnet or known network list)

IP TTL (Time to Live) 1:254 [~0 hop(s)]

Total Data Sent 30.4 GBytes/132,316,022 Pkts/0 Retran. Pkts [0%]

Broadcast Pkts Sent 46 Pkts

Data Sent Stats
Local 8.8 %

Rem 91.2 %

IP vs. Non-IP Sent
IP 91.2 %

Non-IP 8.8 %

Total Data Rcvd 287.2 GBytes/236,897,030 Pkts/0 Retran. Pkts [0%]

Data Rcvd Stats
Local 10.6 %

Rem 89.4 %

IP vs. Non-IP Rcvd
IP 89.4 %

Non-IP 10.6 %

Sent vs. Rcvd Pkts
Sent 35.8 %

Rcvd 64.2 %

Sent vs. Rcvd Data
Sent 9.6 %

Rcvd 90.4 %

Used Subnet Routers F2:D9:A0:7D:57:46 Network Card
LAA (Locally assigned address):63:53:C9
LAA (Locally assigned address):8B:47:CB
FA:CB:D6:D7:C4:32
Jetway Information Co., Ltd.:AB:14:78
7C:2A:DB:9B:F7:85
LAA (Locally assigned address):3A:CD:A3
8E:B0:B2:54:26:FC
Host Type Name Server DNS
VoIP Host VoIP

Host Healthness (Risk Flags) High Risk Medium Risk Low Risk
Wrong network mask or bridging enabled
Suspicious activities: too many host contacts
Unexpected packets (e.g. traffic to closed port or connection reset):
[Rcvd: rejected] [Sent: udp to closed] [Rcvd: port unreac] [Rcvd: hostnet unreac] [Rcvd: admin prohib]

Host Traffic Stats

Time	Tot. Traffic Sent	% Traffic Sent	Tot. Traffic Rcvd	% Traffic Rcvd
8 AM	407.8 MBytes	13.2 %	7.5 GBytes	18.1 %
7 AM	9.4 MBytes	0.3 %	46.4 MBytes	0.1 %
6 AM	190.3 MBytes	6.1 %	1.3 GBytes	3.1 %
5 AM	16.1 MBytes	0.5 %	117.4 MBytes	0.3 %
4 AM	6.1 MBytes	0.2 %	4.3 MBytes	0.0 %
3 AM	43.7 MBytes	1.4 %	114.7 MBytes	0.3 %
2 AM	381.6 KBytes	0.0 %	6.0 MBytes	0.0 %
1 AM	513.7 KBytes	0.0 %	1.1 MBytes	0.0 %
12 AM	1.1 MBytes	0.0 %	24.8 MBytes	0.1 %
11 PM	24.2 MBytes	0.8 %	382.4 MBytes	0.9 %
10 PM	1.5 MBytes	0.0 %	7.1 MBytes	0.0 %
9 PM	51.6 MBytes	1.7 %	344.1 MBytes	0.8 %
8 PM	15.7 MBytes	0.5 %	64.0 MBytes	0.2 %
7 PM	43.4 MBytes	1.4 %	250.3 MBytes	0.6 %
6 PM	41.9 MBytes	1.4 %	493.3 MBytes	1.2 %
5 PM	10.4 MBytes	0.3 %	162.5 MBytes	0.4 %
4 PM	3.9 MBytes	0.1 %	48.5 MBytes	0.1 %
3 PM	33.2 MBytes	1.1 %	180.0 MBytes	0.4 %
2 PM	79.2 MBytes	2.6 %	275.7 MBytes	0.6 %
1 PM	23.3 MBytes	0.8 %	120.3 MBytes	0.3 %
12 PM	176.5 MBytes	5.7 %	2.5 GBytes	5.9 %
11 AM	693.5 MBytes	22.4 %	9.4 GBytes	22.6 %
10 AM	730.5 MBytes	23.6 %	9.9 GBytes	23.9 %
9 AM	492.2 MBytes	15.9 %	8.4 GBytes	20.1 %
Total

Packet Statistics

TCP Connections	Directed to		Rcvd From
Rejected	608	3.33.221.48 157.240.235.60 157.240.7.54 15.197.210.208 31.13.70.50 31.13.93.54 31.13.95.60 31.13.95.61	327	Jetway Information Co., Ltd.:AB:14:78 207.241.237.3

Anomaly	Pkts Sent to		Pkts Rcvd from
UDP Pkt to Closed Port	21,914	120.188.64.129 202.145.6.160 103.65.214.81 35.213.190.132 161.202.206.252 161.202.206.160 161.202.206.8 161.202.206.147	83,349	34.102.164.249 23.39.173.139 142.251.10.95 23.48.173.235 71.18.36.225 43.152.163.140 35.186.203.63 34.117.97.41
ICMP Port Unreachable	83,957	34.102.164.249 23.39.173.139 142.251.10.95 23.48.173.235 71.18.36.225 43.152.163.140 35.186.203.63 34.117.97.41	22,241	120.188.64.129 202.145.6.160 103.65.214.81 35.213.190.132 161.202.206.252 161.202.206.160 161.202.206.8 161.202.206.147
ICMP Net Unreachable	1,590,146	57.144.100.9 142.251.12.95 142.251.12.109 34.117.245.175 157.240.208.60 31.13.95.34 157.240.217.34 157.240.208.34	106	172.16.12.149 103.47.132.52 172.16.17.30 213.254.227.217 103.47.133.35 38.188.115.224 202.154.12.172 38.188.112.128
ICMP Administratively Prohibited	0		33	17.253.61.203 173.16.9.177 54.169.117.200 13.251.71.45 3.1.63.52 17.253.61.197 18.141.48.67 18.136.13.165

ARP	Packet
Request Sent	0
Reply Rcvd	14,677 (0.0 %)
Reply Sent	14,569

Protocol Distribution

Protocol

Data Sent

Data Rcvd

TCP

11.2 GBytes

70.0 GBytes

UDP

16.3 GBytes

186.7 GBytes

ICMP

273.7 MBytes

7.7 MBytes

IPsec

0.1 KBytes

709.7 MBytes

(R)ARP

1.3 MBytes

799.7 KBytes

Protocol Distribution

IP Distribution

ICMP Traffic

Type	Pkt Sent	Pkt Rcvd
Echo Request	51,071	0
Echo Reply	0	38,565
Unreach	1,674,103	22,382
Time Exceeded	0	19,243

IP Fragments Distribution

Protocol	Data Sent	Data Rcvd
UDP	7.0 KBytes	1.3 MBytes
Fragment Distribution
IP Fragment Distribution

Last Contacted Peers

Sent To	IP Address
157.240.7.35	157.240.7.35
57.144.100.1	57.144.100.1
157.240.208.34	157.240.208.34
66.96.226.211	66.96.226.211
71.18.36.224	71.18.36.224
103.242.150.3	103.242.150.3
31.13.95.13	31.13.95.13
103.157.33.94	103.157.33.94
Total Contacts	15568991

Received From	IP Address
31.13.95.13	31.13.95.13
157.240.208.34	157.240.208.34
66.96.226.211	66.96.226.211
157.240.7.35	157.240.7.35
157.240.7.20	157.240.7.20
71.18.36.224	71.18.36.224
103.242.150.3	103.242.150.3
13.35.218.168	13.35.218.168
Total Contacts	18704302

TCP/UDP Service/Port Usage

IP Service	Port	# Client Sess.	Last Client Peer	# Server Sess.	Last Server Peer
ftp	21	26/19.7 KBytes	217.160.102.109
ssh	22	24844/15.4 MBytes	172.234.236.41
nicname	43	2/593	212.193.111.1
domain	53	24833/37.8 MBytes	Jetway Information Co., Ltd.:AB:14:78	1/99	102.139.208.76
http	80	43922/2.9 GBytes	34.104.35.123
81	81			2/115	Jetway Information Co., Ltd.:AB:14:78
ctf	84			2/221	114.114.114.114
npp	92	12/240	169.150.212.238
dcp	93	92/1.8 KBytes	169.150.212.227
supdup	95	10/200	146.70.20.99
dixie	96	10/200	128.14.197.97	2/533	Jetway Information Co., Ltd.:AB:14:78
swift-rvf	97	34/680	146.70.20.96
tacnews	98	236/315.7 KBytes	8.222.250.43
metagram	99	30/564	128.14.65.49
ntp	123	27759/1.3 MBytes	103.177.8.230	88/4.1 KBytes	17.253.60.125
sqlsrv	156			2/90	114.114.114.114
sgmp-traps	160	96/32.9 KBytes	169.136.94.249
bgp	179	48/26.6 KBytes	24.199.68.20
masqdialer	224			2/181	114.114.114.114
229	229			2/216	Jetway Information Co., Ltd.:AB:14:78
300	300	94/10.7 KBytes	8.215.162.27
301	301	289/30.2 KBytes	8.215.162.29
302	302	78/6.1 KBytes	8.215.162.26
303	303	231/24.7 KBytes	8.215.162.31
opalis-robot	314			2/106	114.114.114.114
opc-job-track	424			2/200	114.114.114.114
decvms-sysmgt	441			4/258	Jetway Information Co., Ltd.:AB:14:78
https	443	42072/287.7 GBytes	31.13.95.13	1/35	34.117.36.110
urd	465	11/5.0 KBytes	64.233.170.109
isakmp	500	36994/734.2 MBytes	115.178.175.4	1/40	172.25.51.11
ulp	522			2/312	114.114.114.114
rtsp	554	5273/3.3 MBytes	172.234.249.228
dhcp-failover	647	10/9.7 KBytes	8.215.162.11
accessnetwork	699			4/310	8.8.8.8
agentx	705			2/536	Jetway Information Co., Ltd.:AB:14:78
725	725			4/404	Jetway Information Co., Ltd.:AB:14:78
737	737			2/556	Jetway Information Co., Ltd.:AB:14:78
853	853	33984/10.0 MBytes	94.140.14.14
865	865			2/96	Jetway Information Co., Ltd.:AB:14:78
916	916			2/200	114.114.114.114
983	983	32/20.4 KBytes	172.233.81.115
imaps	993	4036/1.5 MBytes	142.251.12.109

TCP/UDP - Traffic on Other Ports

Client Port	Server Port
58049	43532

TCP/UDP Recently Used Ports

Client Port	Server Port
48588	oap-admin