Info about 163.30.44.1

Please enable make sure that the ntop html/ directory is properly installed

Info about 163.30.44.1

IP Address 163.30.44.1 [unicast - multihomed ] [ Purge Asset ]

Multihomed Addresses
Custom Host Name

First/Last Seen Wed Aug 20 00:00:00 2025 - Wed Aug 20 22:17:48 2025 [Inactive since 1 sec]

Autonomous System 1659 [Tiawan Academic Network (TANet) Information Center]

Subnet 163.30.44.0/24

Main Host MAC Address 10:C3:7B:47:57:9A

Origin AS 1659

Host Location Local (inside specified/local subnet or known network list)

Physical Location Taoyüan, Taiwan Flag for Taiwan (TW)

IP TTL (Time to Live) 63:127 [~0 hop(s)]

Total Data Sent 37.8 MBytes/198,674 Pkts/0 Retran. Pkts [0%]

Broadcast Pkts Sent 1,503 Pkts

Data Sent Stats
Local 13.0 %

Rem 87.0 %

IP vs. Non-IP Sent
IP 100 %

Non-IP 0 %

Total Data Rcvd 47.2 MBytes/198,680 Pkts/0 Retran. Pkts [0%]

Data Rcvd Stats
Local 5.8 %

Rem 94.2 %

IP vs. Non-IP Rcvd
IP 100 %

Non-IP 0 %

Sent vs. Rcvd Pkts
Sent 50.0 %

Rcvd 50.0 %

Sent vs. Rcvd Data
Sent 44.5 %

Rcvd 55.5 %

Used Subnet Routers 4C:77:6D:62:EA:41 Network Card
Host Type Name Server DNS
VoIP Host VoIP
SMTP (Mail) Server Mail (SMTP)
POP Server
IMAP Server
HTTP Server

Host Healthness (Risk Flags) High Risk Medium Risk Low Risk
Wrong network mask or bridging enabled
Suspicious activities: too many host contacts
Unexpected packets (e.g. traffic to closed port or connection reset):
[Sent: udp to closed] [Rcvd: rst] [Rcvd: port unreac] [Rcvd: hostnet unreac] [Rcvd: admin prohib]

Host Traffic Stats

Time	Tot. Traffic Sent	% Traffic Sent	Tot. Traffic Rcvd	% Traffic Rcvd
10 PM	724.9 KBytes	1.9 %	369.7 KBytes	0.8 %
9 PM	1.7 MBytes	4.6 %	3.6 MBytes	7.7 %
8 PM	2.3 MBytes	6.2 %	4.2 MBytes	8.9 %
7 PM	1.6 MBytes	4.2 %	3.7 MBytes	7.8 %
6 PM	3.5 MBytes	9.2 %	2.5 MBytes	5.4 %
5 PM	2.7 MBytes	7.0 %	1.8 MBytes	3.8 %
4 PM	3.2 MBytes	8.5 %	2.0 MBytes	4.2 %
3 PM	2.2 MBytes	5.9 %	3.9 MBytes	8.3 %
2 PM	3.2 MBytes	8.6 %	1.9 MBytes	4.1 %
1 PM	1.6 MBytes	4.3 %	1.9 MBytes	3.9 %
12 PM	1.9 MBytes	4.9 %	1.9 MBytes	3.9 %
11 AM	1.7 MBytes	4.5 %	1.9 MBytes	3.9 %
10 AM	1.3 MBytes	3.5 %	1.5 MBytes	3.2 %
9 AM	1.6 MBytes	4.2 %	3.0 MBytes	6.5 %
8 AM	1003.0 KBytes	2.6 %	1.3 MBytes	2.8 %
7 AM	1005.8 KBytes	2.6 %	1.3 MBytes	2.8 %
6 AM	1.0 MBytes	2.7 %	1.2 MBytes	2.4 %
5 AM	789.9 KBytes	2.0 %	1.1 MBytes	2.3 %
4 AM	1.5 MBytes	4.1 %	1.7 MBytes	3.6 %
3 AM	691.7 KBytes	1.8 %	1.2 MBytes	2.6 %
2 AM	906.9 KBytes	2.3 %	3.0 MBytes	6.3 %
1 AM	594.6 KBytes	1.5 %	1.1 MBytes	2.3 %
12 AM	1.1 MBytes	2.9 %	1.2 MBytes	2.5 %
11 PM	0	0.0 %	0	0.0 %
Total

Packet Statistics

TCP Connections	Directed to		Rcvd From
Attempted	4,708	52.101.8.50 194.195.220.41 50.3.189.46 202.39.160.90 147.185.132.164 149.38.1.26 192.195.72.53 192.41.162.30	16,545	167.94.146.45 154.38.170.233 216.73.216.188 165.154.237.244 91.231.89.207 66.249.77.11 134.199.207.54 219.70.85.71
Established	2,034 [43 %]	107.174.51.246 192.58.128.30 52.101.8.50 50.3.189.46 202.39.160.90 149.38.1.26 192.195.72.53 192.41.162.30	5,488 [33 %]	219.70.85.71 35.202.9.133 49.13.167.123 128.140.106.114 216.73.216.188 66.249.77.13 167.62.20.231 66.249.77.11
Terminated	0		431	167.94.145.24 167.94.145.96 167.94.145.64 10.80.253.164 64.62.156.195 91.224.92.17 36.228.147.27 219.70.85.71

TCP Flags	Pkts Sent		Pkts Rcvd
SYN	4,708	52.101.8.50 194.195.220.41 50.3.189.46 202.39.160.90 147.185.132.164 149.38.1.26 192.195.72.53 192.41.162.30	16,545	167.94.146.45 154.38.170.233 216.73.216.188 165.154.237.244 91.231.89.207 66.249.77.11 134.199.207.54 219.70.85.71
RST\|ACK	5,988	64.62.156.171 129.212.182.162 103.102.230.4 167.94.146.45 154.38.170.233 165.154.237.244 91.231.89.207 134.199.207.54	532	40.124.175.188 123.194.12.97 114.34.210.27 167.94.145.96 50.3.189.23 104.223.40.220 165.154.217.225 147.185.132.164
RST	46	147.185.132.165 45.156.129.132 128.185.225.150 192.81.215.188 104.155.195.40 223.143.196.148 118.231.200.159 162.142.125.123	3,249	193.32.162.162 162.240.160.35 165.154.237.240 216.73.216.188 165.154.246.245 46.8.112.98 154.38.170.233 165.154.237.244
NULL	0		255	162.142.125.244 146.88.241.167 162.142.125.245 162.142.125.248 206.168.34.166 146.88.241.125 123.58.205.67 64.62.197.237

Anomaly	Pkts Sent to		Pkts Rcvd from
UDP Pkt to Closed Port	244	64.71.138.162 61.216.173.5 163.30.44.26 AXIOM TECHNOLOGY CO., LTD.:61:C6:42 163.30.44.7 147.185.132.25 47.250.80.234 167.94.138.135	342	162.142.125.248 206.168.34.166 146.88.241.125 123.58.205.67 64.62.197.237 20.15.162.238 65.49.1.149 192.33.4.12
UDP Pkt Disgnostic Port	0		3	65.49.1.112 64.62.156.16 64.62.156.51
TCP Pkt Disgnostic Port	3	71.6.232.22 104.234.115.188	3	71.6.232.22 104.234.115.188
Tiny Fragments	0		10	204.61.216.100
Closed Empty TCP Conn.	0		431	167.94.145.24 167.94.145.96 167.94.145.64 10.80.253.164 64.62.156.195 91.224.92.17 36.228.147.27 219.70.85.71
ICMP Port Unreachable	342	162.142.125.248 206.168.34.166 146.88.241.125 123.58.205.67 64.62.197.237 20.15.162.238 65.49.1.149 192.33.4.12	244	64.71.138.162 61.216.173.5 163.30.44.26 AXIOM TECHNOLOGY CO., LTD.:61:C6:42 163.30.44.7 147.185.132.25 47.250.80.234 167.94.138.135
ICMP Net Unreachable	0		3	192.192.61.102 199.19.93.171
ICMP Administratively Prohibited	0		230	194.195.220.41 206.196.177.149 78.153.140.176 152.69.187.7 140.115.19.42

ARP	Packet
Request Sent	0
Reply Rcvd	59 (0.0 %)
Reply Sent	4,076

Protocol Distribution

Protocol

Data Sent

Data Rcvd

TCP

24.9 MBytes

22.0 MBytes

UDP

12.7 MBytes

24.9 MBytes

ICMP

152.4 KBytes

159.2 KBytes

(R)ARP

128.8 KBytes

177.6 KBytes

Other (Non IP)

0.0 KBytes

0.2 KBytes

Protocol Distribution

IP Distribution

Unknown Protocols

Data Sent	Data Rcvd
	IP Protocol: 0x41 IP Protocol: 0x4

ICMP Traffic

Type	Pkt Sent	Pkt Rcvd
Echo Request	804	0
Echo Reply	0	804
Unreach	342	477
Redirect	742	0

IP Fragments Distribution

Protocol	Data Sent	Data Rcvd
UDP	0.0 KBytes	67.9 KBytes
Fragment Distribution
IP Fragment Distribution

Last Contacted Peers

Sent To	IP Address
203.119.26.1	203.119.26.1
203.119.27.1	203.119.27.1
163.30.44.7	163.30.44.7
163.30.44.14	163.30.44.14
163.30.44.9	163.30.44.9
163.30.0.1	163.30.0.1
216.73.216.188	216.73.216.188
Total Contacts	41282

Received From	IP Address
163.30.44.9	163.30.44.9
165.154.237.244	165.154.237.244
163.30.44.7	163.30.44.7
91.231.89.207	91.231.89.207
66.249.77.11	66.249.77.11
134.199.207.54	134.199.207.54
219.70.85.71	219.70.85.71
216.73.216.188	216.73.216.188
Total Contacts	38396

HTTP Virtual Hosts Traffic

Virtual Host	Sent	Rcvd
www.youporn.com	44	131
163.30.44.1:80	184.9 KBytes	250.3 KBytes
host1.tyes.tyc.edu.tw	27.4 MBytes	27.7 MBytes
www.tyes.tyc.edu.tw	423.6 KBytes	453.5 KBytes
163.30.44.1	1.5 MBytes	1.5 MBytes

NOTE: The above table is not updated in realtime but when connections are terminated.

IP Service Stats: Client Role

	# Loc. Req. Sent		# Rem. Req. Sent		# Pos. Reply Rcvd		# Neg. Reply Rcvd		Local RndTrip	Rem RndTrip
DNS	0	0.0%	92,920	100.0%	66,471	73.0%	24,067	26.0%	0.0 ms - 0.0 ms	0.1 ms - 5.0 sec
HTTP	0	0.0%	9	100.0%	4	50.0%	4	50.0%	0.0 ms - 0.0 ms	0.0 ms - 0.0 ms

IP Service Stats: Server Role

# Loc. Req. Rcvd # Rem. Req. Rcvd # Pos. Reply Sent # Neg. Reply Sent Local RndTrip Rem RndTrip

DNS 29,909 99.0% 35 0.0% 6,316 21.0% 23,528 78.0% 0.0 ms - 30.0 sec 0.1 ms - 0.1 ms

HTTP 0 0.0% 1,071 100.0% 97 94.0% 6 5.0% 0.0 ms - 0.0 ms 0.0 ms - 0.0 ms

TCP/UDP Service/Port Usage

IP Service	Port	# Client Sess.	Last Client Peer	# Server Sess.	Last Server Peer
7	7			1/23	65.49.1.112
11	11			1/1	65.49.1.97
13	13			1/1	64.62.156.16
17	17			2/2	65.49.1.33
19	19			1/1	64.62.156.51
ftp	21			1/21	20.55.29.197
22	22			1/21	135.237.126.231
telnet	23			1/21	20.15.224.207
25	25	1283/143.9 KBytes	202.39.160.90	6075/5.6 MBytes	147.185.132.164
26	26	1/44	213.179.209.177
37	37			1/1	64.62.156.18
53	53	52596/22.9 MBytes	163.30.0.1	59816/4.7 MBytes	163.30.44.9
69	69			2/34	64.62.197.165
http	80	5101/7.0 MBytes	192.50.199.248	13361/13.8 MBytes	66.249.77.11
81	81			1/21	20.169.105.164
102	102			1/22	20.169.107.190
pop-3	110			179/7.9 KBytes	VMware, Inc.:BB:92:25
113	113			1/192	165.154.237.253
123	123	8/384	118.163.81.61	10/218	65.49.1.149
netbios-ns	137	27/1.3 KBytes	163.30.44.7	27/1.3 KBytes	163.30.44.7
netbios-ssn	139			1/22	52.165.89.103
143	143			102/13.1 KBytes	165.154.246.240
snmp	161			161/10.6 KBytes	176.61.148.89
177	177			3/21	167.94.138.131
199	199			6/536	199.45.154.156
389	389			2/105	64.62.156.75
427	427			2/54	147.185.132.90
https	443			4/2.7 KBytes	20.15.162.238
465	465			2/52	20.163.14.19
500	500			5/2.6 KBytes	205.210.31.75
502	502			1/22	9.234.8.67
520	520			3/72	23.228.99.177
523	523			2/40	45.56.118.110
587	587			48/6.0 KBytes	40.124.175.188
623	623			2/46	64.62.156.69
626	626			1/30	165.154.246.253
873	873			72/1.8 KBytes	52.165.81.253
993	993			32/3.5 KBytes	162.142.125.123

TCP/UDP - Traffic on Other Ports

Client Port	Server Port
52348	3000

TCP/UDP Recently Used Ports

Client Port	Server Port
52348	3000

Recent Sessions: Network Delay

Client Mode

Server Mode

Last Time	Service	Last Server Contact	Client Delay [min/avg/max]
Wed Aug 20 21:08:44 2025	HTTP	192.50.199.248	0.01/0.02/0.08 ms

Last Time	Service	Last Client Contact	Server Delay [min/avg/max]
Wed Aug 20 22:17:28 2025	HTTP	219.70.85.71	0.01/0.01/0.05 ms
Wed Aug 20 17:40:32 2025	Mail	162.142.125.123	0.01/0.01/0.02 ms

Scenario: client <--> ntop <--> server
Client Delay: the network delay (computed as RTT/2) taken
by a packet sent by the client to reach ntop
Server Delay: the network delay (computed as RTT/2) taken
by a packet sent by the server to reach ntop
All times are majored during TCP 3-way handshake

Active Sessions

Proto	Client	Server	Data Sent/Rcvd		Active Since	Duration	Inactive	Client/Server Nw Delay		L7 Proto
TCP	216.73.216.188 :65450	163.30.44.1 :3000	740	6.1 KBytes	Wed Aug 20 22:17:47 2025	1 sec	1 sec	115.91 ms	0.02 ms
TCP	216.73.216.188 :3673	163.30.44.1 :3000	1.1 KBytes	20.9 KBytes	Wed Aug 20 22:16:19 2025	1 sec	1:29	111.96 ms	0.02 ms
TCP	216.73.216.188 :3867	163.30.44.1 :3000	1.1 KBytes	27.2 KBytes	Wed Aug 20 22:16:56 2025	1 sec	52 sec	119.54 ms	0.01 ms
TCP	crawl-66-249-77-11.googlebot.com :44525	163.30.44.1 :http	746	2.4 KBytes	Wed Aug 20 22:17:24 2025	6 sec	19 sec	78.06 ms	0.01 ms	HTTP
TCP	216.73.216.188 :18987	163.30.44.1 :3000	792	6.4 KBytes	Wed Aug 20 22:16:55 2025	1 sec	53 sec	116.57 ms	0.02 ms
TCP	219-70-85-71.hyabd.com.tw :62800	163.30.44.1 :http	116	60	Wed Aug 20 22:17:28 2025	0 sec	21 sec	4.54 ms	0.01 ms
TCP	216.73.216.188 :36217	163.30.44.1 :3000	842	6.3 KBytes	Wed Aug 20 22:16:57 2025	0 sec	52 sec	116.83 ms	0.02 ms
TCP	216.73.216.188 :51574	163.30.44.1 :3000	847	8.3 KBytes	Wed Aug 20 22:16:21 2025	0 sec	1:28	115.79 ms	0.01 ms
TCP	216.73.216.188 :59595	163.30.44.1 :3000	847	16.2 KBytes	Wed Aug 20 22:16:21 2025	1 sec	1:27	117.88 ms	0.01 ms

The color of the host link indicates how recently the host was FIRST seen
0 to 5 minutes	5 to 15 minutes	15 to 30 minutes	30 to 60 minutes	60+ minutes