Info about host1.tyes.tyc.edu.tw

Please enable make sure that the ntop html/ directory is properly installed

Info about host1.tyes.tyc.edu.tw

IP Address 163.30.44.1 [unicast] [ Purge Asset ]

Custom Host Name

First/Last Seen Thu Aug 21 00:00:10 2025 - Thu Aug 21 00:03:18 2025 [Inactive since 1 sec]

Autonomous System 1659 [Tiawan Academic Network (TANet) Information Center]

Subnet 163.30.44.0/24

MAC Address Network Interface Card (NIC) 10:C3:7B:47:57:9A

Origin AS 1659

Host Location Local (inside specified/local subnet or known network list)

Physical Location Taoyüan, Taiwan Flag for Taiwan (TW)

IP TTL (Time to Live) 64:64 [~0 hop(s)]

Total Data Sent 230.9 KBytes/630 Pkts/0 Retran. Pkts [0%]

Broadcast Pkts Sent 0 Pkts

Data Sent Stats
Local 4.2 %

Rem 95.8 %

IP vs. Non-IP Sent
IP 100 %

Non-IP 0 %

Total Data Rcvd 92.7 KBytes/656 Pkts/0 Retran. Pkts [0%]

Data Rcvd Stats
Local 5.9 %

Rem 94.1 %

IP vs. Non-IP Rcvd
IP 100 %

Non-IP 0 %

Sent vs. Rcvd Pkts
Sent 49.0 %

Rcvd 51.0 %

Sent vs. Rcvd Data
Sent 71.4 %

Rcvd 28.6 %

Used Subnet Routers 4C:77:6D:62:EA:41 Network Card
Host Type Name Server DNS
SMTP (Mail) Server Mail (SMTP)
HTTP Server

Host Healthness (Risk Flags) High Risk Medium Risk Low Risk
Unexpected packets (e.g. traffic to closed port or connection reset):
[Rcvd: rst] [Rcvd: port unreac] [Rcvd: admin prohib]

Host Traffic Stats

Time	Tot. Traffic Sent	% Traffic Sent	Tot. Traffic Rcvd	% Traffic Rcvd
12 AM	230.9 KBytes	100.0 %	92.7 KBytes	100.0 %
11 PM	0	0.0 %	0	0.0 %
10 PM	0	0.0 %	0	0.0 %
9 PM	0	0.0 %	0	0.0 %
8 PM	0	0.0 %	0	0.0 %
7 PM	0	0.0 %	0	0.0 %
6 PM	0	0.0 %	0	0.0 %
5 PM	0	0.0 %	0	0.0 %
4 PM	0	0.0 %	0	0.0 %
3 PM	0	0.0 %	0	0.0 %
2 PM	0	0.0 %	0	0.0 %
1 PM	0	0.0 %	0	0.0 %
12 PM	0	0.0 %	0	0.0 %
11 AM	0	0.0 %	0	0.0 %
10 AM	0	0.0 %	0	0.0 %
9 AM	0	0.0 %	0	0.0 %
8 AM	0	0.0 %	0	0.0 %
7 AM	0	0.0 %	0	0.0 %
6 AM	0	0.0 %	0	0.0 %
5 AM	0	0.0 %	0	0.0 %
4 AM	0	0.0 %	0	0.0 %
3 AM	0	0.0 %	0	0.0 %
2 AM	0	0.0 %	0	0.0 %
1 AM	0	0.0 %	0	0.0 %
Total

Packet Statistics

TCP Connections	Directed to		Rcvd From
Attempted	35	107.174.51.246 167.99.215.164 34.141.111.176 216.73.216.188 52.101.8.50 194.195.220.41 50.3.189.46 5.230.66.78	82	5.230.66.78 20.15.133.162 193.46.255.223 20.168.0.135 118.194.250.60 118.193.64.235 206.168.34.151 216.73.216.188
Established	13 [37 %]	167.99.215.164 107.174.51.246 34.141.111.176 216.73.216.188 52.101.8.50 50.3.189.46	24 [29 %]	216.73.216.188 20.15.133.165 5.230.66.78 20.15.133.162

TCP Flags	Pkts Sent		Pkts Rcvd
SYN	35	107.174.51.246 167.99.215.164 34.141.111.176 216.73.216.188 52.101.8.50 194.195.220.41 50.3.189.46 5.230.66.78	82	5.230.66.78 20.15.133.162 193.46.255.223 20.168.0.135 118.194.250.60 118.193.64.235 206.168.34.151 216.73.216.188
RST\|ACK	34	165.154.246.242 91.196.152.90 5.230.66.78 193.46.255.223 20.168.0.135 118.194.250.60 118.193.64.235 206.168.34.151	4	5.230.66.78
RST	0		75	85.239.34.203 194.180.48.63 194.238.31.127 216.73.216.188 165.154.246.242 193.46.255.223

Anomaly	Pkts Sent to		Pkts Rcvd from
UDP Pkt to Closed Port	1	198.235.24.90	0
ICMP Port Unreachable	0		1	198.235.24.90
ICMP Administratively Prohibited	0		4	194.195.220.41

ARP	Packet
Request Sent	0
Reply Rcvd	0 (0.0 %)
Reply Sent	11

Protocol Distribution

Protocol

Data Sent

Data Rcvd

TCP

197.5 KBytes

28.5 KBytes

UDP

32.8 KBytes

62.9 KBytes

ICMP

0.3 KBytes

1.0 KBytes

(R)ARP

0.3 KBytes

0.4 KBytes

Protocol Distribution

IP Distribution

ICMP Traffic

Type	Pkt Sent	Pkt Rcvd
Echo Request	3	0
Echo Reply	0	3
Unreach	0	5

Last Contacted Peers

Sent To	IP Address
163.30.0.1	163.30.0.1
216.73.216.188	216.73.216.188
163.30.44.9	163.30.44.9
193.46.255.223	193.46.255.223
20.168.0.135	20.168.0.135
118.194.250.60	118.194.250.60
118.193.64.235	118.193.64.235
206.168.34.151	206.168.34.151
Total Contacts	97

Received From	IP Address
216.73.216.188	216.73.216.188
163.30.44.9	163.30.44.9
193.46.255.223	193.46.255.223
163.30.0.1	163.30.0.1
20.168.0.135	20.168.0.135
118.194.250.60	118.194.250.60
118.193.64.235	118.193.64.235
206.168.34.151	206.168.34.151
Total Contacts	90

HTTP Virtual Hosts Traffic

Virtual Host	Sent	Rcvd
host1.tyes.tyc.edu.tw	32.6 KBytes	32.4 KBytes

NOTE: The above table is not updated in realtime but when connections are terminated.

IP Service Stats: Client Role

	# Loc. Req. Sent		# Rem. Req. Sent		# Pos. Reply Rcvd		# Neg. Reply Rcvd		Local RndTrip	Rem RndTrip
DNS	0	0.0%	273	100.0%	215	79.0%	57	20.0%	0.0 ms - 0.0 ms	0.8 ms - 5.0 sec
HTTP	0	0.0%	1	100.0%	0	0.0%	0	0.0%	0.0 ms - 0.0 ms	0.0 ms - 0.0 ms

IP Service Stats: Server Role

# Loc. Req. Rcvd # Rem. Req. Rcvd # Pos. Reply Sent # Neg. Reply Sent Local RndTrip Rem RndTrip

DNS 60 100.0% 0 0.0% 16 26.0% 44 73.0% 0.0 ms - 939.1 ms 0.0 ms - 0.0 ms

HTTP 0 0.0% 2 100.0% 0 0.0% 0 0.0% 0.0 ms - 0.0 ms 0.0 ms - 0.0 ms

TCP/UDP Service/Port Usage

IP Service	Port	# Client Sess.	Last Client Peer	# Server Sess.	Last Server Peer
25	25	6/516	52.101.8.50	10/772	5.230.66.78
53	53	548/59.5 KBytes	163.30.0.1	120/9.6 KBytes	163.30.44.9
http	80	2/824	167.99.215.164	14/15.1 KBytes	20.15.133.162
snmp	161			2/254	198.235.24.90
587	587			10/752	5.230.66.78

TCP/UDP - Traffic on Other Ports

Client Port	Server Port
35441	3000

TCP/UDP Recently Used Ports

Client Port	Server Port
35441	3000

Recent Sessions: Network Delay

Client Mode

Server Mode

Last Time	Service	Last Server Contact	Client Delay [min/avg/max]
Thu Aug 21 00:00:15 2025	HTTP	167.99.215.164	0.05/0.05/0.05 ms

Last Time	Service	Last Client Contact	Server Delay [min/avg/max]
Thu Aug 21 00:02:14 2025	HTTP	20.15.133.162	0.01/0.01/0.01 ms

Scenario: client <--> ntop <--> server
Client Delay: the network delay (computed as RTT/2) taken
by a packet sent by the client to reach ntop
Server Delay: the network delay (computed as RTT/2) taken
by a packet sent by the server to reach ntop
All times are majored during TCP 3-way handshake

Active Sessions

Proto	Client	Server	Data Sent/Rcvd		Active Since	Duration	Inactive	Client/Server Nw Delay		L7 Proto
TCP	216.73.216.188 :62562	host1.tyes.tyc.edu.tw :3000	994	10.5 KBytes	Thu Aug 21 00:02:31 2025	0 sec	48 sec	107.69 ms	0.01 ms
TCP	216.73.216.188 :63494	host1.tyes.tyc.edu.tw :3000	995	10.5 KBytes	Thu Aug 21 00:02:31 2025	1 sec	47 sec	109.30 ms	0.01 ms
TCP	216.73.216.188 :3392	host1.tyes.tyc.edu.tw :3000	993	10.5 KBytes	Thu Aug 21 00:02:30 2025	0 sec	49 sec	107.25 ms	0.01 ms
TCP	vps68932a745752c666055188.noezserver.de :54310	host1.tyes.tyc.edu.tw :25	342	684	Thu Aug 21 00:02:08 2025	5 sec	1:06	99.40 ms	0.03 ms
TCP	vps68932a745752c666055188.noezserver.de :54312	host1.tyes.tyc.edu.tw :25	342	684	Thu Aug 21 00:02:08 2025	5 sec	1:06	97.41 ms	0.02 ms
TCP	vps68932a745752c666055188.noezserver.de :56398	host1.tyes.tyc.edu.tw :587	342	674	Thu Aug 21 00:02:53 2025	1 sec	25 sec	99.55 ms	0.01 ms
TCP	vps68932a745752c666055188.noezserver.de :56414	host1.tyes.tyc.edu.tw :587	342	674	Thu Aug 21 00:02:53 2025	1 sec	25 sec	99.53 ms	0.01 ms
TCP	216.73.216.188 :19972	host1.tyes.tyc.edu.tw :3000	900	10.5 KBytes	Thu Aug 21 00:02:31 2025	1 sec	47 sec	108.04 ms	0.01 ms
TCP	216.73.216.188 :25124	host1.tyes.tyc.edu.tw :3000	995	10.5 KBytes	Thu Aug 21 00:02:32 2025	1 sec	46 sec	109.18 ms	0.01 ms
TCP	216.73.216.188 :29666	host1.tyes.tyc.edu.tw :3000	60	60	Thu Aug 21 00:03:18 2025	0 sec	1 sec
TCP	216.73.216.188 :36443	host1.tyes.tyc.edu.tw :3000	891	10.5 KBytes	Thu Aug 21 00:02:30 2025	1 sec	48 sec	110.53 ms	0.01 ms
TCP	msnbot-20-15-133-162.search.msn.com :61123	host1.tyes.tyc.edu.tw :http	763	14.5 KBytes	Thu Aug 21 00:02:14 2025	7 sec	58 sec	82.38 ms	0.01 ms	HTTP
TCP	host1.tyes.tyc.edu.tw :49514	189.3.50-static.rdns.serverhub.com :25	468	0	Thu Aug 21 00:02:10 2025	58 sec	11 sec
TCP	216.73.216.188 :40151	host1.tyes.tyc.edu.tw :3000	954	10.5 KBytes	Thu Aug 21 00:02:32 2025	1 sec	46 sec	109.65 ms	0.01 ms
TCP	216.73.216.188 :41969	host1.tyes.tyc.edu.tw :3000	994	10.5 KBytes	Thu Aug 21 00:02:29 2025	0 sec	50 sec	107.41 ms	0.01 ms
TCP	216.73.216.188 :45998	host1.tyes.tyc.edu.tw :3000	534	4.5 KBytes	Thu Aug 21 00:03:18 2025	0 sec	1 sec	108.56 ms	0.01 ms
TCP	216.73.216.188 :47752	host1.tyes.tyc.edu.tw :3000	746	3.9 KBytes	Thu Aug 21 00:03:17 2025	1 sec	1 sec	115.43 ms	0.01 ms

The color of the host link indicates how recently the host was FIRST seen
0 to 5 minutes	5 to 15 minutes	15 to 30 minutes	30 to 60 minutes	60+ minutes