🛡️ Security Report

Sunday, June 14, 2026 — 22:00 ICT

💻 System Health

48G/473G
Disk Used
1.3Gi/30Gi
Memory (4%)
0.77, 0.81, 0.92
Load Average
3 days, 10 hours, 31 minutes
Uptime

Fail2ban: active  ·  UFW Blocks (24h): 2,919

📡 Open Ports

✓ ufw-docker active Docker ports on 0.0.0.0 are blocked from external access

Cross-referenced with Docker port mappings and UFW rules

Local AddressServiceType
100.80.139.9:8000docker-proxy Docker internal
10.0.1.1:22sshd
0.0.0.0:443docker-proxy Docker 0.0.0.0 (ufw-docker blocked)
0.0.0.0:80docker-proxy Docker 0.0.0.0 (ufw-docker blocked)
100.80.139.9:6002docker-proxy Docker internal
100.80.139.9:6001docker-proxy Docker internal
127.0.0.1:22sshd loopback
100.80.139.9:36486tailscaled Tailscale
127.0.0.1:8000docker-proxy loopback
127.0.0.1:24543moshi loopback
127.0.0.1:6012cloudflared loopback
0.0.0.0:8080docker-proxy Docker 0.0.0.0 (ufw-docker blocked)
127.0.0.54:53systemd-resolve
100.80.139.9:22sshd Tailscale
127.0.0.53%lo:53systemd-resolve
10.0.0.1:22sshd
100.80.139.9:8443tailscaled Tailscale
[::]:443docker-proxy Docker internal
[::]:80docker-proxy Docker internal
[fd7a:115c:a1e0::533b:8b09]:22sshd Tailscale
[::]:8080docker-proxy Docker internal
[fd7a:115c:a1e0::533b:8b09]:8443tailscaled Tailscale
[fd7a:115c:a1e0::533b:8b09]:43591tailscaled Tailscale

🔥 Firewall (UFW)

Status: active

To                         Action      From
--                         ------      ----
41641/udp                  ALLOW       Anywhere                  
22/tcp on tailscale0       ALLOW       Anywhere                   # SSH via Tailscale only
Anywhere on tailscale0     ALLOW       Anywhere                  
60000:61000/udp on tailscale0 ALLOW       Anywhere                   # Mosh via Tailscale
22/tcp on docker0          ALLOW       Anywhere                  
41641/udp (v6)             ALLOW       Anywhere (v6)             
22/tcp (v6) on tailscale0  ALLOW       Anywhere (v6)              # SSH via Tailscale only
Anywhere (v6) on tailscale0 ALLOW       Anywhere (v6)             
60000:61000/udp (v6) on tailscale0 ALLOW       Anywhere (v6)              # Mosh via Tailscale
22/tcp (v6) on docker0     ALLOW       Anywhere (v6)

🔐 SSH Activity

0
Failed Attempts (24h)
964
New Sessions (24h)

Recent SSH Logins (last 10)

TimeIPHostPortSource
06/14 21:0110.0.0.210.0.0.259226🔑 sshd
06/14 21:0710.0.0.210.0.0.252612🔑 sshd
06/14 21:1310.0.0.210.0.0.236818🔑 sshd
06/14 21:1910.0.0.210.0.0.238728🔑 sshd
06/14 21:2510.0.0.210.0.0.251742🔑 sshd
06/14 21:3110.0.0.210.0.0.257712🔑 sshd
06/14 21:3710.0.0.210.0.0.237258🔑 sshd
06/14 21:4310.0.0.210.0.0.260310🔑 sshd
06/14 21:4910.0.0.210.0.0.234540🔑 sshd
06/14 21:5510.0.0.210.0.0.260572🔑 sshd

🔍 Processes

✓ No high CPU processes

✓ No high memory processes

🌐 Tailscale

8/14 peers online

NodeOSIPStatus
ssdnode this machinelinux100.80.139.9✓ Online
boxlinux100.86.226.66✓ Online
contabolinux100.111.135.6✓ Online
hkrouterlinux100.66.31.7✓ Online
ipad13tviOS100.117.146.121✓ Online
iphoneairiOS100.95.106.126✓ Online
kitailinux100.97.4.90✓ Online
kits-macbook-pro-9h4ymacOS100.123.239.87✓ Online
tencentlinux100.109.227.19✓ Online
appletvtvOS100.108.161.6✗ Offline
ipadproiOS100.65.224.43✗ Offline
iphone-14-pro-maxiOS100.92.136.103✗ Offline
kitlegiongowindows100.67.231.89✗ Offline
kits-macbook-airmacOS100.127.101.27✗ Offline
mobilerouterlinux100.127.101.21✗ Offline

🐣 Docker

✓ No TCP daemon exposure

ContainerStatusPorts
coolify-sentinelUp 14 hours (healthy)
so13t9jiakgbyzwp863dmvzu-103035573499Up 3 days3000/tcp
lijg3ncf0yp8on32jagmeg0yUp 3 days (healthy)5432/tcp
lkn2msiqhoymcuyaa64cnazj-065012572847Up 3 days3000/tcp
ithh2dbx1jyjl6dejr3mre1kUp 3 days (healthy)5432/tcp
enthri8p43s4atofatobcunp-232449789422Up 3 days3000/tcp
coolifyUp 3 days (healthy)8000/tcp, 8443/tcp, 9000/tcp, 100.80.139.9:8000->8080/tcp, 127.0.0.1:8000->8080/tcp
coolify-proxyUp 3 days (healthy)0.0.0.0:80->80/tcp, [::]:80->80/tcp, 0.0.0.0:443->443/tcp, [::]:443->443/tcp, 0.0.0.0:8080->8080/tcp, [::]:8080->8080/tcp, 0.0.0.0:443->443/udp, [::]:443->443/udp
coolify-realtimeUp 3 days (healthy)100.80.139.9:6001-6002->6001-6002/tcp
coolify-dbUp 3 days (healthy)5432/tcp
coolify-redisUp 3 days (healthy)6379/tcp

🚫 UFW Block Details (24h)

Top Source IPs

1008 10.0.0.3
    304 10.0.0.2
    127 2604
    118 2001
     96 2
     41 2607
     26 160.119.76.33
     22 173.247.226.62
     18 79.124.62.230
     15 194.180.48.33

Top Targeted Ports

1011 8000
    304 23517
     32 2221
     30 23
     13 3389
     13 22
      8 53
      7 27017
      7 27015
      7 2083

☁️ Cloudflare Tunnel

Uptime: Thu 2026-06-11 04:29:24 UTC · 0 domains routed

4
HA Connections
3
Edge Locations
4
Request Errors
0
Active Sessions

Edges: sin11, sin15, sin16

DomainStatus

⚠ Attack Attempts (7d) 14

TypeCount
Other8
Path traversal3
App probe2
AWS credential probe1

📋 Report History