Traffic Trace Info
DumpFile: 201203300545.dump
FileSize: 2123.34MB
Id: 201203300545
StartTime: Fri Mar 30 05:45:01 2012
EndTime: Fri Mar 30 06:00:00 2012
TotalTime: 899.42 seconds
TotalCapSize: 1682.18MB CapLen: 96 bytes
# of packets: 28911596 (22639.32MB)
AvgRate: 211.14Mbps stddev:26.66M
IP flow (unique src/dst pair) Information
# of flows: 1742578 (avg. 16.59 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.0% 3.1% 3.0% 2.4% 1.8% 1.7% 1.7% 1.6% 1.5% 1.4%
IP address Information
# of IPv4 addresses: 1397971
Top 10 bandwidth usage (bytes/total in %):
26.3% 9.5% 9.1% 7.4% 5.8% 4.2% 4.1% 4.0% 3.8% 3.6%
# of IPv6 addresses: 5726
Top 10 bandwidth usage (bytes/total in %):
24.7% 24.7% 17.6% 15.0% 15.0% 8.2% 7.1% 7.1% 6.8% 6.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203300545.pktlen.png)
detailed numbers
[ 32- 63]: 4188552
[ 64- 127]: 7072680
[ 128- 255]: 1147118
[ 256- 511]: 869484
[ 512- 1023]: 721795
[ 1024- 2047]: 14911967
Protocol Breakdown
![[protocol breakdown chart]](201203300545.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 28911596 (100.00%) 23739048245 (100.00%) 821.09
ip 28722659 ( 99.35%) 23668380692 ( 99.70%) 824.03
tcp 22775932 ( 78.78%) 20968900512 ( 88.33%) 920.66
http(s) 9131741 ( 31.59%) 12952879046 ( 54.56%) 1418.45
http(c) 5607674 ( 19.40%) 1199239559 ( 5.05%) 213.86
squid 1563631 ( 5.41%) 1694497203 ( 7.14%) 1083.69
smtp 29281 ( 0.10%) 5523954 ( 0.02%) 188.65
nntp 6 ( 0.00%) 374 ( 0.00%) 62.33
ftp 8301 ( 0.03%) 795233 ( 0.00%) 95.80
pop3 15325 ( 0.05%) 10213936 ( 0.04%) 666.49
imap 1017 ( 0.00%) 232075 ( 0.00%) 228.20
telnet 1479 ( 0.01%) 98170 ( 0.00%) 66.38
ssh 478950 ( 1.66%) 60636271 ( 0.26%) 126.60
dns 2195 ( 0.01%) 272997 ( 0.00%) 124.37
bgp 600 ( 0.00%) 107427 ( 0.00%) 179.04
napster 31 ( 0.00%) 2415 ( 0.00%) 77.90
realaud 54 ( 0.00%) 6793 ( 0.00%) 125.80
icecast 5830 ( 0.02%) 4891515 ( 0.02%) 839.02
hotline 14 ( 0.00%) 1446 ( 0.00%) 103.29
other 5929803 ( 20.51%) 5039502098 ( 21.23%) 849.86
udp 2557148 ( 8.84%) 1034958710 ( 4.36%) 404.73
dns 405665 ( 1.40%) 84220835 ( 0.35%) 207.61
rip 1 ( 0.00%) 68 ( 0.00%) 68.00
realaud 14 ( 0.00%) 2220 ( 0.00%) 158.57
halflif 22 ( 0.00%) 1633 ( 0.00%) 74.23
starcra 25 ( 0.00%) 2627 ( 0.00%) 105.08
everque 331 ( 0.00%) 67897 ( 0.00%) 205.13
unreal 101 ( 0.00%) 31389 ( 0.00%) 310.78
quake 9 ( 0.00%) 1109 ( 0.00%) 123.22
cuseeme 2 ( 0.00%) 162 ( 0.00%) 81.00
other 2150794 ( 7.44%) 950578175 ( 4.00%) 441.97
icmp 1688794 ( 5.84%) 176371069 ( 0.74%) 104.44
ipip 184 ( 0.00%) 19172 ( 0.00%) 104.20
ipsec 38816 ( 0.13%) 27758080 ( 0.12%) 715.12
ip6 1644443 ( 5.69%) 1457306105 ( 6.14%) 886.20
pim 260 ( 0.00%) 15600 ( 0.00%) 60.00
other 17082 ( 0.06%) 3051444 ( 0.01%) 178.64
frag 887 ( 0.00%) 720575 ( 0.00%) 812.37
ip6 188937 ( 0.65%) 70667553 ( 0.30%) 374.03
tcp6 123423 ( 0.43%) 57994117 ( 0.24%) 469.88
http(s) 7327 ( 0.03%) 9161246 ( 0.04%) 1250.34
http(c) 9950 ( 0.03%) 903233 ( 0.00%) 90.78
smtp 138 ( 0.00%) 66385 ( 0.00%) 481.05
ssh 1446 ( 0.01%) 258251 ( 0.00%) 178.60
dns 135 ( 0.00%) 20724 ( 0.00%) 153.51
bgp 96 ( 0.00%) 19270 ( 0.00%) 200.73
other 104331 ( 0.36%) 47565008 ( 0.20%) 455.90
udp6 35711 ( 0.12%) 8603317 ( 0.04%) 240.92
dns 33477 ( 0.12%) 8259557 ( 0.03%) 246.72
starcra 1 ( 0.00%) 117 ( 0.00%) 117.00
everque 1 ( 0.00%) 100 ( 0.00%) 100.00
quake 1 ( 0.00%) 118 ( 0.00%) 118.00
cuseeme 1 ( 0.00%) 108 ( 0.00%) 108.00
other 2230 ( 0.01%) 343317 ( 0.00%) 153.95
icmp6 29332 ( 0.10%) 3693428 ( 0.02%) 125.92
ip6 86 ( 0.00%) 11648 ( 0.00%) 135.44
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 354 ( 0.00%) 360827 ( 0.00%) 1019.29
tcpdump file: 201203300545.dump.gz (673.20 MB)