Traffic Trace Info
DumpFile: 201203301615.dump
FileSize: 2688.45MB
Id: 201203301615
StartTime: Fri Mar 30 16:15:00 2012
EndTime: Fri Mar 30 16:30:01 2012
TotalTime: 900.71 seconds
TotalCapSize: -1978.44MB CapLen: 96 bytes
# of packets: 37413088 (29933.82MB)
AvgRate: 278.81Mbps stddev:53.60M
IP flow (unique src/dst pair) Information
# of flows: 1808973 (avg. 20.68 pkts/flow)
Top 10 big flow size (bytes/total in %):
8.3% 6.2% 4.5% 3.4% 2.9% 1.6% 1.5% 1.4% 1.4% 1.4%
IP address Information
# of IPv4 addresses: 1393464
Top 10 bandwidth usage (bytes/total in %):
11.6% 8.5% 8.4% 6.7% 6.6% 6.3% 6.0% 5.2% 4.6% 3.7%
# of IPv6 addresses: 7297
Top 10 bandwidth usage (bytes/total in %):
84.8% 81.6% 5.9% 2.4% 2.3% 2.0% 1.7% 1.2% 0.9% 0.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203301615.pktlen.png)
detailed numbers
[ 32- 63]: 6544737
[ 64- 127]: 7866617
[ 128- 255]: 1203793
[ 256- 511]: 1174807
[ 512- 1023]: 925740
[ 1024- 2047]: 19697394
Protocol Breakdown
![[protocol breakdown chart]](201203301615.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37413088 (100.00%) 31387889294 (100.00%) 838.95
ip 36896816 ( 98.62%) 30847565648 ( 98.28%) 836.05
tcp 30357512 ( 81.14%) 28253800727 ( 90.01%) 930.70
http(s) 13623657 ( 36.41%) 18853673265 ( 60.07%) 1383.89
http(c) 7616976 ( 20.36%) 1597964157 ( 5.09%) 209.79
squid 51053 ( 0.14%) 33981163 ( 0.11%) 665.61
smtp 74922 ( 0.20%) 32679756 ( 0.10%) 436.18
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 12144 ( 0.03%) 2484287 ( 0.01%) 204.57
pop3 3717 ( 0.01%) 1782601 ( 0.01%) 479.58
imap 3579 ( 0.01%) 1963389 ( 0.01%) 548.59
telnet 1575 ( 0.00%) 115126 ( 0.00%) 73.10
ssh 626861 ( 1.68%) 906138578 ( 2.89%) 1445.52
dns 1896 ( 0.01%) 149723 ( 0.00%) 78.97
bgp 636 ( 0.00%) 122176 ( 0.00%) 192.10
napster 42 ( 0.00%) 2802 ( 0.00%) 66.71
realaud 18 ( 0.00%) 1130 ( 0.00%) 62.78
rtsp 10078 ( 0.03%) 11717365 ( 0.04%) 1162.67
icecast 24700 ( 0.07%) 16689248 ( 0.05%) 675.68
hotline 12 ( 0.00%) 752 ( 0.00%) 62.67
other 8305642 ( 22.20%) 6794334969 ( 21.65%) 818.04
udp 3376661 ( 9.03%) 1437780308 ( 4.58%) 425.80
dns 554531 ( 1.48%) 138885861 ( 0.44%) 250.46
rip 1 ( 0.00%) 109 ( 0.00%) 109.00
realaud 11 ( 0.00%) 1257 ( 0.00%) 114.27
halflif 54 ( 0.00%) 8318 ( 0.00%) 154.04
starcra 27 ( 0.00%) 3555 ( 0.00%) 131.67
everque 5719 ( 0.02%) 5532040 ( 0.02%) 967.31
unreal 98 ( 0.00%) 45082 ( 0.00%) 460.02
quake 12 ( 0.00%) 1071 ( 0.00%) 89.25
cuseeme 3 ( 0.00%) 249 ( 0.00%) 83.00
other 2816068 ( 7.53%) 1293255852 ( 4.12%) 459.24
icmp 1595176 ( 4.26%) 125475650 ( 0.40%) 78.66
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 12885 ( 0.03%) 4247166 ( 0.01%) 329.62
ip6 1533998 ( 4.10%) 1022405463 ( 3.26%) 666.50
pim 266 ( 0.00%) 15960 ( 0.00%) 60.00
other 20133 ( 0.05%) 3821104 ( 0.01%) 189.79
frag 799 ( 0.00%) 713173 ( 0.00%) 892.58
ip6 516270 ( 1.38%) 540323526 ( 1.72%) 1046.59
tcp6 408775 ( 1.09%) 505716949 ( 1.61%) 1237.15
http(s) 16632 ( 0.04%) 20508552 ( 0.07%) 1233.08
http(c) 44962 ( 0.12%) 3850654 ( 0.01%) 85.64
smtp 1881 ( 0.01%) 573428 ( 0.00%) 304.85
dns 142 ( 0.00%) 25340 ( 0.00%) 178.45
bgp 92 ( 0.00%) 17469 ( 0.00%) 189.88
other 345066 ( 0.92%) 480741506 ( 1.53%) 1393.19
udp6 78909 ( 0.21%) 30253348 ( 0.10%) 383.40
dns 63416 ( 0.17%) 17021842 ( 0.05%) 268.42
realaud 5 ( 0.00%) 557 ( 0.00%) 111.40
starcra 1 ( 0.00%) 96 ( 0.00%) 96.00
everque 1 ( 0.00%) 98 ( 0.00%) 98.00
quake 2 ( 0.00%) 243 ( 0.00%) 121.50
other 15484 ( 0.04%) 13230512 ( 0.04%) 854.46
icmp6 27771 ( 0.07%) 3654388 ( 0.01%) 131.59
ip6 87 ( 0.00%) 11816 ( 0.00%) 135.82
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 698 ( 0.00%) 682945 ( 0.00%) 978.43
tcpdump file: 201203301615.dump.gz (860.57 MB)