Traffic Trace Info
DumpFile: 201203301900.dump
FileSize: 3001.15MB
Id: 201203301900
StartTime: Fri Mar 30 19:00:01 2012
EndTime: Fri Mar 30 19:15:01 2012
TotalTime: 900.00 seconds
TotalCapSize: -1724.56MB CapLen: 96 bytes
# of packets: 41267930 (32426.70MB)
AvgRate: 302.02Mbps stddev:53.01M
IP flow (unique src/dst pair) Information
# of flows: 2047204 (avg. 20.16 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.4% 5.9% 3.7% 2.8% 2.4% 1.8% 1.4% 1.3% 1.2% 0.8%
IP address Information
# of IPv4 addresses: 1541106
Top 10 bandwidth usage (bytes/total in %):
22.8% 18.8% 8.8% 6.7% 6.2% 3.9% 3.5% 2.9% 2.6% 2.5%
# of IPv6 addresses: 6407
Top 10 bandwidth usage (bytes/total in %):
98.2% 66.5% 31.0% 0.6% 0.3% 0.1% 0.1% 0.1% 0.1% 0.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203301900.pktlen.png)
detailed numbers
[ 32- 63]: 8121884
[ 64- 127]: 8705205
[ 128- 255]: 1253056
[ 256- 511]: 826548
[ 512- 1023]: 1070700
[ 1024- 2047]: 21290537
Protocol Breakdown
![[protocol breakdown chart]](201203301900.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 41267930 (100.00%) 34001862348 (100.00%) 823.93
ip 40244911 ( 97.52%) 32585115006 ( 95.83%) 809.67
tcp 32552296 ( 78.88%) 29787519005 ( 87.61%) 915.07
http(s) 17555958 ( 42.54%) 24639443917 ( 72.46%) 1403.48
http(c) 8701411 ( 21.09%) 1466582338 ( 4.31%) 168.55
squid 97680 ( 0.24%) 72944426 ( 0.21%) 746.77
smtp 44538 ( 0.11%) 12147813 ( 0.04%) 272.75
nntp 6 ( 0.00%) 374 ( 0.00%) 62.33
ftp 9837 ( 0.02%) 922460 ( 0.00%) 93.77
pop3 2539 ( 0.01%) 827543 ( 0.00%) 325.93
imap 1429 ( 0.00%) 211375 ( 0.00%) 147.92
telnet 23398 ( 0.06%) 1726149 ( 0.01%) 73.77
ssh 38665 ( 0.09%) 6078759 ( 0.02%) 157.22
dns 2308 ( 0.01%) 170476 ( 0.00%) 73.86
bgp 672 ( 0.00%) 141479 ( 0.00%) 210.53
napster 92 ( 0.00%) 7908 ( 0.00%) 85.96
realaud 150 ( 0.00%) 9698 ( 0.00%) 64.65
rtsp 7 ( 0.00%) 420 ( 0.00%) 60.00
icecast 21258 ( 0.05%) 14009611 ( 0.04%) 659.03
hotline 22 ( 0.00%) 1362 ( 0.00%) 61.91
other 6052325 ( 14.67%) 3572292837 ( 10.51%) 590.23
udp 3543892 ( 8.59%) 1558642210 ( 4.58%) 439.81
dns 459780 ( 1.11%) 107306361 ( 0.32%) 233.39
realaud 42 ( 0.00%) 9112 ( 0.00%) 216.95
halflif 20 ( 0.00%) 3321 ( 0.00%) 166.05
starcra 15 ( 0.00%) 2148 ( 0.00%) 143.20
everque 497 ( 0.00%) 217931 ( 0.00%) 438.49
unreal 163 ( 0.00%) 61574 ( 0.00%) 377.75
quake 11 ( 0.00%) 1082 ( 0.00%) 98.36
cuseeme 6 ( 0.00%) 896 ( 0.00%) 149.33
other 3030201 ( 7.34%) 1447795729 ( 4.26%) 477.79
icmp 2165981 ( 5.25%) 213063484 ( 0.63%) 98.37
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 1861 ( 0.00%) 626126 ( 0.00%) 336.45
ip6 1955112 ( 4.74%) 1017522954 ( 2.99%) 520.44
pim 284 ( 0.00%) 17040 ( 0.00%) 60.00
other 25300 ( 0.06%) 7704917 ( 0.02%) 304.54
frag 114272 ( 0.28%) 87311316 ( 0.26%) 764.07
ip6 1023019 ( 2.48%) 1416747342 ( 4.17%) 1384.87
tcp6 939657 ( 2.28%) 1398732185 ( 4.11%) 1488.56
http(s) 6166 ( 0.01%) 6385964 ( 0.02%) 1035.67
http(c) 6902 ( 0.02%) 662343 ( 0.00%) 95.96
smtp 245 ( 0.00%) 144359 ( 0.00%) 589.22
ftp 28 ( 0.00%) 2262 ( 0.00%) 80.79
ssh 1489 ( 0.00%) 444995 ( 0.00%) 298.85
dns 293 ( 0.00%) 60876 ( 0.00%) 207.77
bgp 87 ( 0.00%) 16081 ( 0.00%) 184.84
other 924447 ( 2.24%) 1391015305 ( 4.09%) 1504.70
udp6 55919 ( 0.14%) 13916785 ( 0.04%) 248.87
dns 51341 ( 0.12%) 13203160 ( 0.04%) 257.17
realaud 2 ( 0.00%) 218 ( 0.00%) 109.00
halflif 7 ( 0.00%) 659 ( 0.00%) 94.14
starcra 1 ( 0.00%) 106 ( 0.00%) 106.00
everque 1 ( 0.00%) 151 ( 0.00%) 151.00
quake 2 ( 0.00%) 219 ( 0.00%) 109.50
other 4565 ( 0.01%) 712272 ( 0.00%) 156.03
icmp6 26746 ( 0.06%) 3531011 ( 0.01%) 132.02
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 582 ( 0.00%) 551733 ( 0.00%) 947.99
tcpdump file: 201203301900.dump.gz (936.59 MB)