🛡️ Security Report

Wednesday, July 01, 2026 — 16:28 ICT
ssdnode-kitkit
43G/473G
Disk
5%
Memory
1.91, 2.54, 2.63
Load Avg
2 weeks, 6 days, 4 hours, 59 minutes
Uptime
activeFail2ban
16,155UFW Blocks
23Open Ports
11Containers

📡 Open Ports

✓ ufw-docker active Docker ports on 0.0.0.0 are blocked from external access

Cross-referenced with Docker port mappings and UFW rules

Local AddressServiceType
100.80.139.9:8000docker-proxy Docker internal
10.0.1.1:22sshd
0.0.0.0:443docker-proxy Docker 0.0.0.0 (ufw-docker blocked)
0.0.0.0:80docker-proxy Docker 0.0.0.0 (ufw-docker blocked)
100.80.139.9:6002docker-proxy Docker internal
100.80.139.9:6001docker-proxy Docker internal
127.0.0.1:22sshd loopback
100.80.139.9:36486tailscaled Tailscale
127.0.0.1:8000docker-proxy loopback
127.0.0.1:24543moshi-hook loopback
127.0.0.1:6012cloudflared loopback
0.0.0.0:8080docker-proxy Docker 0.0.0.0 (ufw-docker blocked)
127.0.0.54:53systemd-resolve
100.80.139.9:22sshd Tailscale
127.0.0.53%lo:53systemd-resolve
10.0.0.1:22sshd
100.80.139.9:8443tailscaled Tailscale
[::]:443docker-proxy Docker internal
[::]:80docker-proxy Docker internal
[fd7a:115c:a1e0::533b:8b09]:22sshd Tailscale
[::]:8080docker-proxy Docker internal
[fd7a:115c:a1e0::533b:8b09]:8443tailscaled Tailscale
[fd7a:115c:a1e0::533b:8b09]:43591tailscaled Tailscale

🔥 Firewall (UFW)

Status: active

To                         Action      From
--                         ------      ----
41641/udp                  ALLOW       Anywhere                  
22/tcp on tailscale0       ALLOW       Anywhere                   # SSH via Tailscale only
Anywhere on tailscale0     ALLOW       Anywhere                  
60000:61000/udp on tailscale0 ALLOW       Anywhere                   # Mosh via Tailscale
22/tcp on docker0          ALLOW       Anywhere                  
41642/udp                  ALLOW       Anywhere                   # Tailscale peer relay
41641/udp (v6)             ALLOW       Anywhere (v6)             
22/tcp (v6) on tailscale0  ALLOW       Anywhere (v6)              # SSH via Tailscale only
Anywhere (v6) on tailscale0 ALLOW       Anywhere (v6)             
60000:61000/udp (v6) on tailscale0 ALLOW       Anywhere (v6)              # Mosh via Tailscale
22/tcp (v6) on docker0     ALLOW       Anywhere (v6)             
41642/udp (v6)             ALLOW       Anywhere (v6)              # Tailscale peer relay

🔐 SSH Activity

0
Failed Attempts (24h)
5637
New Sessions (24h)

🔒 Tailscale SSH Logins (last 10)

TimeIPHostTailscale UserNode
07/01 08:57100.127.101.27kits-macbook-airtagged-deviceskits-macbook-air
07/01 08:59100.127.101.27kits-macbook-airtagged-deviceskits-macbook-air
07/01 09:02100.127.101.27kits-macbook-airtagged-deviceskits-macbook-air

🔑 Other SSH Logins (last 10)

TimeIPHostPort
07/01 15:3110.0.0.210.0.0.249048
07/01 15:3710.0.0.210.0.0.257272
07/01 15:4310.0.0.210.0.0.249270
07/01 15:4910.0.0.210.0.0.238048
07/01 15:5510.0.0.210.0.0.260142
07/01 16:0110.0.0.210.0.0.244580
07/01 16:0710.0.0.210.0.0.247662
07/01 16:1310.0.0.210.0.0.244280
07/01 16:1910.0.0.210.0.0.238818
07/01 16:2510.0.0.210.0.0.244676

🔍 Processes

✓ No high CPU processes

✓ No high memory processes

🌐 Tailscale

13/15 online

NodeOSStatus
ssdnodethis machinelinuxOnline
appletvtvOSOnline
boxlinuxOnline
contabolinuxOnline
glkvmlinuxOnline
hkrouterlinuxOnline
ipad13tviOSOnline
ipadproiOSOnline
iphone-14-pro-maxiOSOnline
iphoneairiOSOnline
kitailinuxOnline
kits-macbook-airmacOSOnline
kits-macbook-pro-9h4ymacOSOnline
tencentlinuxOnline
kitlegiongowindowsOffline
mobilerouterlinuxOffline

🐣 Docker

✓ No TCP daemon exposure

ContainerStatusPorts
coolify-sentinelUp 10 days (healthy)
so13t9jiakgbyzwp863dmvzu-103035573499Up 10 days3000/tcp
lijg3ncf0yp8on32jagmeg0yUp 10 days (healthy)5432/tcp
lkn2msiqhoymcuyaa64cnazj-065012572847Up 10 days3000/tcp
ithh2dbx1jyjl6dejr3mre1kUp 10 days (healthy)5432/tcp
enthri8p43s4atofatobcunp-232449789422Up 10 days3000/tcp
coolifyUp 10 days (healthy)8000/tcp, 8443/tcp, 9000/tcp, 100.80.139.9:8000->8080/tcp, 127.0.0.1:8000->8080/tcp
coolify-proxyUp 10 days (healthy)0.0.0.0:80->80/tcp, [::]:80->80/tcp, 0.0.0.0:443->443/tcp, [::]:443->443/tcp, 0.0.0.0:8080->8080/tcp, [::]:8080->8080/tcp, 0.0.0.0:443->443/udp, [::]:443->443/udp
coolify-realtimeUp 10 days (healthy)100.80.139.9:6001-6002->6001-6002/tcp
coolify-dbUp 10 days (healthy)5432/tcp
coolify-redisUp 10 days (healthy)6379/tcp

🚫 UFW Block Details (24h)

Top Source IPs

3919 10.0.0.3
   2223 10.0.0.2
    583 2
    532 2001
    364 79.124.62.230
    309 79.124.62.134
    256 79.124.62.126
    246 2607
    133 193.46.255.155
     66 185.150.191.236

Top Targeted Ports

3942 8000
   2223 23517
    240 2221
    124 23
     87 3389
     74 22
     69 8443
     39 5060
     33 8888
     31 2222

☁️ Cloudflare Tunnel

Uptime: Thu 2026-06-11 04:29:24 UTC · 0 domains routed

4
HA Connections
4
Edge Locations
495
Request Errors
0
Active Sessions

Edges: sin07, sin16, sin17, sin21

DomainStatus

⚠ Attack Attempts (7d) 27

TypeCount
Other20
AWS credential probe3
Path traversal2
App probe2

📋 Report History