Traffic Trace Info
DumpFile: 201203301830.dump
FileSize: 2681.05MB
Id: 201203301830
StartTime: Fri Mar 30 18:30:00 2012
EndTime: Fri Mar 30 18:45:01 2012
TotalTime: 900.67 seconds
TotalCapSize: -1978.88MB CapLen: 96 bytes
# of packets: 36956638 (28209.89MB)
AvgRate: 262.74Mbps stddev:43.89M
IP flow (unique src/dst pair) Information
# of flows: 1899446 (avg. 19.46 pkts/flow)
Top 10 big flow size (bytes/total in %):
9.9% 8.6% 5.4% 2.9% 2.5% 1.9% 1.6% 1.5% 1.5% 1.3%
IP address Information
# of IPv4 addresses: 1428121
Top 10 bandwidth usage (bytes/total in %):
17.6% 11.8% 11.8% 11.4% 10.2% 8.8% 5.6% 5.4% 3.9% 3.1%
# of IPv6 addresses: 6356
Top 10 bandwidth usage (bytes/total in %):
93.7% 91.9% 1.0% 0.9% 0.8% 0.5% 0.4% 0.4% 0.4% 0.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203301830.pktlen.png)
detailed numbers
[ 32- 63]: 7176369
[ 64- 127]: 8450193
[ 128- 255]: 1023586
[ 256- 511]: 819384
[ 512- 1023]: 940955
[ 1024- 2047]: 18546151
Protocol Breakdown
![[protocol breakdown chart]](201203301830.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36956638 (100.00%) 29580208376 (100.00%) 800.40
ip 36521917 ( 98.82%) 29097150737 ( 98.37%) 796.70
tcp 29818450 ( 80.68%) 27100736633 ( 91.62%) 908.86
http(s) 14144826 ( 38.27%) 19498048087 ( 65.92%) 1378.46
http(c) 7286588 ( 19.72%) 1190350582 ( 4.02%) 163.36
squid 77843 ( 0.21%) 45186774 ( 0.15%) 580.49
smtp 52181 ( 0.14%) 22765283 ( 0.08%) 436.28
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 10177 ( 0.03%) 909000 ( 0.00%) 89.32
pop3 2405 ( 0.01%) 1063122 ( 0.00%) 442.05
imap 5439 ( 0.01%) 2342740 ( 0.01%) 430.73
telnet 3078 ( 0.01%) 219413 ( 0.00%) 71.28
ssh 106039 ( 0.29%) 10939597 ( 0.04%) 103.17
dns 1818 ( 0.00%) 155020 ( 0.00%) 85.27
bgp 659 ( 0.00%) 136037 ( 0.00%) 206.43
napster 61 ( 0.00%) 4419 ( 0.00%) 72.44
realaud 19 ( 0.00%) 1184 ( 0.00%) 62.32
rtsp 32 ( 0.00%) 6270 ( 0.00%) 195.94
icecast 23255 ( 0.06%) 15754892 ( 0.05%) 677.48
hotline 40 ( 0.00%) 2712 ( 0.00%) 67.80
other 8103985 ( 21.93%) 6312851201 ( 21.34%) 778.98
udp 2873048 ( 7.77%) 890835677 ( 3.01%) 310.07
dns 470081 ( 1.27%) 115068024 ( 0.39%) 244.78
realaud 6 ( 0.00%) 493 ( 0.00%) 82.17
halflif 18 ( 0.00%) 1779 ( 0.00%) 98.83
starcra 39 ( 0.00%) 4326 ( 0.00%) 110.92
everque 1764 ( 0.00%) 1522353 ( 0.01%) 863.01
unreal 78 ( 0.00%) 32315 ( 0.00%) 414.29
quake 27 ( 0.00%) 2960 ( 0.00%) 109.63
cuseeme 36 ( 0.00%) 13754 ( 0.00%) 382.06
other 2395862 ( 6.48%) 773856947 ( 2.62%) 323.00
icmp 2098029 ( 5.68%) 199417406 ( 0.67%) 95.05
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 3109 ( 0.01%) 935534 ( 0.00%) 300.91
ip6 1707536 ( 4.62%) 900335949 ( 3.04%) 527.27
pim 216 ( 0.00%) 12960 ( 0.00%) 60.00
other 21344 ( 0.06%) 4857308 ( 0.02%) 227.57
frag 11533 ( 0.03%) 8878355 ( 0.03%) 769.82
ip6 434721 ( 1.18%) 483057639 ( 1.63%) 1111.19
tcp6 349099 ( 0.94%) 464335208 ( 1.57%) 1330.10
http(s) 11634 ( 0.03%) 14248192 ( 0.05%) 1224.70
http(c) 38229 ( 0.10%) 3185627 ( 0.01%) 83.33
smtp 487 ( 0.00%) 310657 ( 0.00%) 637.90
ftp 25 ( 0.00%) 1967 ( 0.00%) 78.68
dns 275 ( 0.00%) 54213 ( 0.00%) 197.14
bgp 89 ( 0.00%) 16036 ( 0.00%) 180.18
other 298360 ( 0.81%) 446518516 ( 1.51%) 1496.58
udp6 58260 ( 0.16%) 14598001 ( 0.05%) 250.57
dns 54236 ( 0.15%) 14124198 ( 0.05%) 260.42
realaud 2 ( 0.00%) 198 ( 0.00%) 99.00
starcra 1 ( 0.00%) 107 ( 0.00%) 107.00
quake 2 ( 0.00%) 217 ( 0.00%) 108.50
cuseeme 2 ( 0.00%) 210 ( 0.00%) 105.00
other 4017 ( 0.01%) 473071 ( 0.00%) 117.77
icmp6 26680 ( 0.07%) 3602215 ( 0.01%) 135.02
ip6 82 ( 0.00%) 11176 ( 0.00%) 136.29
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 570 ( 0.00%) 506959 ( 0.00%) 889.40
tcpdump file: 201203301830.dump.gz (845.59 MB)