🛡️ Security Report

Tuesday, June 09, 2026 — 22:00 ICT

💻 System Health

33G/473G
Disk Used
1.7Gi/30Gi
Memory (6%)
1.03, 0.89, 0.97
Load Average
1 week, 6 days, 13 hours, 16 minutes
Uptime

Fail2ban: active  ·  UFW Blocks (24h): 9,446

📡 Open Ports

✓ ufw-docker active Docker ports on 0.0.0.0 are blocked from external access

Cross-referenced with Docker port mappings and UFW rules

Local AddressServiceType
100.80.139.9:36486tailscaled Tailscale
10.0.1.1:22sshd
100.80.139.9:22sshd Tailscale
100.80.139.9:8000docker-proxy Docker internal
10.0.0.1:22sshd
100.80.139.9:6002docker-proxy Docker internal
100.80.139.9:6001docker-proxy Docker internal
127.0.0.54:53systemd-resolve
0.0.0.0:8080docker-proxy Docker 0.0.0.0 (ufw-docker blocked)
127.0.0.1:24543moshi-hook loopback
127.0.0.1:8000docker-proxy loopback
127.0.0.1:6012cloudflared loopback
100.80.139.9:8443tailscaled Tailscale
127.0.0.53%lo:53systemd-resolve
127.0.0.1:22sshd loopback
0.0.0.0:80docker-proxy Docker 0.0.0.0 (ufw-docker blocked)
0.0.0.0:443docker-proxy Docker 0.0.0.0 (ufw-docker blocked)
[fd7a:115c:a1e0::533b:8b09]:43591tailscaled Tailscale
[fd7a:115c:a1e0::533b:8b09]:8443tailscaled Tailscale
[::]:8080docker-proxy Docker internal
[fd7a:115c:a1e0::533b:8b09]:22sshd Tailscale
[::]:80docker-proxy Docker internal
[::]:443docker-proxy Docker internal

🔥 Firewall (UFW)

Status: active

To                         Action      From
--                         ------      ----
41641/udp                  ALLOW       Anywhere                  
22/tcp on tailscale0       ALLOW       Anywhere                   # SSH via Tailscale only
Anywhere on tailscale0     ALLOW       Anywhere                  
60000:61000/udp on tailscale0 ALLOW       Anywhere                   # Mosh via Tailscale
41641/udp (v6)             ALLOW       Anywhere (v6)             
22/tcp (v6) on tailscale0  ALLOW       Anywhere (v6)              # SSH via Tailscale only
Anywhere (v6) on tailscale0 ALLOW       Anywhere (v6)             
60000:61000/udp (v6) on tailscale0 ALLOW       Anywhere (v6)              # Mosh via Tailscale

🔐 SSH Activity

0
Failed Attempts (24h)
9059
New Sessions (24h)

Recent SSH Logins (last 10)

TimeIPHostPortSource
06/09 21:3110.0.1.1010.0.1.1041920🔑 sshd
06/09 21:3410.0.1.1010.0.1.1045478🔑 sshd
06/09 21:3710.0.1.1010.0.1.1060170🔑 sshd
06/09 21:4010.0.1.1010.0.1.1060344🔑 sshd
06/09 21:4310.0.1.1010.0.1.1058450🔑 sshd
06/09 21:4610.0.1.1010.0.1.1043684🔑 sshd
06/09 21:4910.0.1.1010.0.1.1046396🔑 sshd
06/09 21:5210.0.1.1010.0.1.1037280🔑 sshd
06/09 21:5510.0.1.1010.0.1.1055904🔑 sshd
06/09 21:5810.0.1.1010.0.1.1036244🔑 sshd

🔍 Processes

⚠ High CPU (>50%)

UserPIDCPUCommand
99993451090110%/usr/local/bin/php
9999345102466.1%/usr/local/bin/php

✓ No high memory processes

🌐 Tailscale

11/14 peers online

NodeOSIPStatus
ssdnode this machinelinux100.80.139.9✓ Online
boxlinux100.86.226.66✓ Online
contabolinux100.111.135.6✓ Online
hkrouterlinux100.66.31.7✓ Online
ipad13tviOS100.117.146.121✓ Online
ipadproiOS100.65.224.43✓ Online
iphone-14-pro-maxiOS100.92.136.103✓ Online
iphoneairiOS100.95.106.126✓ Online
kitailinux100.97.4.90✓ Online
kitmbp16macOS100.123.239.87✓ Online
kits-macbook-airmacOS100.127.101.27✓ Online
tencentlinux100.109.227.19✓ Online
appletvtvOS100.108.161.6✗ Offline
kitlegiongowindows100.67.231.89✗ Offline
mobilerouterlinux100.127.101.21✗ Offline

🐣 Docker

✓ No TCP daemon exposure

ContainerStatusPorts
coolify-sentinelUp 47 hours (healthy)
so13t9jiakgbyzwp863dmvzu-103035573499Up 47 hours3000/tcp
lijg3ncf0yp8on32jagmeg0yUp 47 hours (healthy)5432/tcp
lkn2msiqhoymcuyaa64cnazj-065012572847Up 47 hours3000/tcp
ithh2dbx1jyjl6dejr3mre1kUp 47 hours (healthy)5432/tcp
enthri8p43s4atofatobcunp-232449789422Up 47 hours3000/tcp
coolifyUp 47 hours (healthy)8000/tcp, 8443/tcp, 9000/tcp, 100.80.139.9:8000->8080/tcp, 127.0.0.1:8000->8080/tcp
coolify-proxyUp 47 hours (healthy)0.0.0.0:80->80/tcp, [::]:80->80/tcp, 0.0.0.0:443->443/tcp, [::]:443->443/tcp, 0.0.0.0:8080->8080/tcp, [::]:8080->8080/tcp, 0.0.0.0:443->443/udp, [::]:443->443/udp
coolify-realtimeUp 47 hours (healthy)100.80.139.9:6001-6002->6001-6002/tcp
coolify-dbUp 47 hours (healthy)5432/tcp
coolify-redisUp 47 hours (healthy)6379/tcp

🚫 UFW Block Details (24h)

Top Source IPs

1707 10.0.0.2
   1500 10.0.1.10
    357 2
    321 41.168.10.139
    305 160.119.76.34
    293 2001
    142 2604
    137 67.220.180.114
     91 173.247.226.62
     90 193.32.162.211

Top Targeted Ports

1717 8000
   1506 23517
    598 23
    142 2221
     62 3389
     53 22
     42 8443
     29 27015
     22 25565
     21 8081

☁️ Cloudflare Tunnel

Uptime: Tue 2026-06-09 05:32:59 UTC · 0 domains routed

4
HA Connections
4
Edge Locations
2
Request Errors
0
Active Sessions

Edges: sin02, sin19, sin21, sin22

DomainStatus

⚠ Attack Attempts (7d) 17

TypeCount
Other9
App probe4
Path traversal3
AWS credential probe1

📋 Report History