Traffic Trace Info
DumpFile: 201203301545.dump
FileSize: 2377.77MB
Id: 201203301545
StartTime: Fri Mar 30 15:45:00 2012
EndTime: Fri Mar 30 16:00:00 2012
TotalTime: 899.54 seconds
TotalCapSize: 1874.30MB CapLen: 96 bytes
# of packets: 32994743 (22848.64MB)
AvgRate: 213.04Mbps stddev:37.84M
IP flow (unique src/dst pair) Information
# of flows: 1881140 (avg. 17.54 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.6% 3.5% 2.4% 2.3% 2.3% 2.3% 2.2% 1.5% 1.3% 1.2%
IP address Information
# of IPv4 addresses: 1455028
Top 10 bandwidth usage (bytes/total in %):
12.9% 7.1% 5.7% 4.7% 4.7% 3.9% 3.7% 3.7% 3.6% 3.1%
# of IPv6 addresses: 6847
Top 10 bandwidth usage (bytes/total in %):
25.0% 23.0% 22.7% 10.4% 10.3% 9.2% 6.5% 5.8% 5.7% 5.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203301545.pktlen.png)
detailed numbers
[ 32- 63]: 7166598
[ 64- 127]: 7928627
[ 128- 255]: 1064957
[ 256- 511]: 1133369
[ 512- 1023]: 896411
[ 1024- 2047]: 14804781
Protocol Breakdown
![[protocol breakdown chart]](201203301545.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 32994743 (100.00%) 23958532400 (100.00%) 726.13
ip 32708660 ( 99.13%) 23795270870 ( 99.32%) 727.49
tcp 26110870 ( 79.14%) 21034720985 ( 87.80%) 805.59
http(s) 10559621 ( 32.00%) 14272003313 ( 59.57%) 1351.56
http(c) 8597583 ( 26.06%) 1891963216 ( 7.90%) 220.06
squid 36978 ( 0.11%) 23242835 ( 0.10%) 628.56
smtp 45973 ( 0.14%) 21883407 ( 0.09%) 476.01
ftp 28706 ( 0.09%) 17966023 ( 0.07%) 625.86
pop3 4327 ( 0.01%) 1888977 ( 0.01%) 436.56
imap 1668 ( 0.01%) 264102 ( 0.00%) 158.33
telnet 365 ( 0.00%) 25700 ( 0.00%) 70.41
ssh 772842 ( 2.34%) 1115980879 ( 4.66%) 1444.00
dns 2290 ( 0.01%) 175893 ( 0.00%) 76.81
bgp 700 ( 0.00%) 165561 ( 0.00%) 236.52
napster 52 ( 0.00%) 4278 ( 0.00%) 82.27
realaud 16 ( 0.00%) 984 ( 0.00%) 61.50
rtsp 9832 ( 0.03%) 11400409 ( 0.05%) 1159.52
icecast 23688 ( 0.07%) 15772843 ( 0.07%) 665.86
hotline 20 ( 0.00%) 1260 ( 0.00%) 63.00
other 6026207 ( 18.26%) 3661981185 ( 15.28%) 607.68
udp 3127775 ( 9.48%) 1196385817 ( 4.99%) 382.50
dns 522149 ( 1.58%) 141998470 ( 0.59%) 271.95
rip 1 ( 0.00%) 72 ( 0.00%) 72.00
realaud 4 ( 0.00%) 333 ( 0.00%) 83.25
halflif 32 ( 0.00%) 5901 ( 0.00%) 184.41
starcra 18 ( 0.00%) 2482 ( 0.00%) 137.89
everque 1227 ( 0.00%) 786923 ( 0.00%) 641.34
unreal 89 ( 0.00%) 30920 ( 0.00%) 347.42
quake 20 ( 0.00%) 2647 ( 0.00%) 132.35
cuseeme 3 ( 0.00%) 299 ( 0.00%) 99.67
other 2603944 ( 7.89%) 1053443355 ( 4.40%) 404.56
icmp 1678684 ( 5.09%) 131678550 ( 0.55%) 78.44
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 7702 ( 0.02%) 2286148 ( 0.01%) 296.83
ip6 1766421 ( 5.35%) 1427503524 ( 5.96%) 808.13
pim 262 ( 0.00%) 15720 ( 0.00%) 60.00
other 16761 ( 0.05%) 2660856 ( 0.01%) 158.75
frag 1376 ( 0.00%) 1063513 ( 0.00%) 772.90
ip6 286083 ( 0.87%) 163261530 ( 0.68%) 570.68
tcp6 166655 ( 0.51%) 105114660 ( 0.44%) 630.73
http(s) 37662 ( 0.11%) 52497736 ( 0.22%) 1393.92
http(c) 64306 ( 0.19%) 5473174 ( 0.02%) 85.11
smtp 303 ( 0.00%) 154902 ( 0.00%) 511.23
ftp 20 ( 0.00%) 1503 ( 0.00%) 75.15
dns 121 ( 0.00%) 22108 ( 0.00%) 182.71
bgp 95 ( 0.00%) 16629 ( 0.00%) 175.04
other 64148 ( 0.19%) 46948608 ( 0.20%) 731.88
udp6 92894 ( 0.28%) 53866549 ( 0.22%) 579.87
dns 59730 ( 0.18%) 16267358 ( 0.07%) 272.35
realaud 2 ( 0.00%) 217 ( 0.00%) 108.50
halflif 1 ( 0.00%) 118 ( 0.00%) 118.00
everque 1 ( 0.00%) 108 ( 0.00%) 108.00
quake 1 ( 0.00%) 106 ( 0.00%) 106.00
cuseeme 1 ( 0.00%) 104 ( 0.00%) 104.00
other 33158 ( 0.10%) 37598538 ( 0.16%) 1133.92
icmp6 25637 ( 0.08%) 3492263 ( 0.01%) 136.22
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 782 ( 0.00%) 772430 ( 0.00%) 987.76
tcpdump file: 201203301545.dump.gz (775.75 MB)