Traffic Trace Info
DumpFile: 201203302230.dump
FileSize: 2769.23MB
Id: 201203302230
StartTime: Fri Mar 30 22:30:00 2012
EndTime: Fri Mar 30 22:45:00 2012
TotalTime: 899.62 seconds
TotalCapSize: -1914.00MB CapLen: 96 bytes
# of packets: 38484130 (31329.09MB)
AvgRate: 292.16Mbps stddev:54.84M
IP flow (unique src/dst pair) Information
# of flows: 2000720 (avg. 19.24 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.2% 4.4% 4.2% 3.9% 3.1% 3.1% 2.8% 2.7% 2.4% 1.8%
IP address Information
# of IPv4 addresses: 1528444
Top 10 bandwidth usage (bytes/total in %):
27.7% 20.7% 8.0% 6.5% 6.4% 4.5% 4.3% 4.1% 4.1% 3.3%
# of IPv6 addresses: 6240
Top 10 bandwidth usage (bytes/total in %):
86.6% 71.3% 19.7% 4.3% 2.8% 2.4% 2.0% 1.5% 0.9% 0.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203302230.pktlen.png)
detailed numbers
[ 32- 63]: 7368176
[ 64- 127]: 7391420
[ 128- 255]: 1232099
[ 256- 511]: 830685
[ 512- 1023]: 1064047
[ 1024- 2047]: 20597703
Protocol Breakdown
![[protocol breakdown chart]](201203302230.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 38484130 (100.00%) 32850928211 (100.00%) 853.62
ip 37965009 ( 98.65%) 32230467651 ( 98.11%) 848.95
tcp 30427961 ( 79.07%) 29345753328 ( 89.33%) 964.43
http(s) 17533720 ( 45.56%) 24215813083 ( 73.71%) 1381.10
http(c) 7244719 ( 18.83%) 668927595 ( 2.04%) 92.33
squid 76791 ( 0.20%) 45874244 ( 0.14%) 597.39
smtp 39961 ( 0.10%) 9966804 ( 0.03%) 249.41
nntp 6 ( 0.00%) 374 ( 0.00%) 62.33
ftp 13606 ( 0.04%) 1434355 ( 0.00%) 105.42
pop3 11247 ( 0.03%) 8625304 ( 0.03%) 766.90
imap 2181 ( 0.01%) 257521 ( 0.00%) 118.07
telnet 2120 ( 0.01%) 154426 ( 0.00%) 72.84
ssh 33400 ( 0.09%) 12568984 ( 0.04%) 376.32
dns 1788 ( 0.00%) 134077 ( 0.00%) 74.99
bgp 663 ( 0.00%) 138635 ( 0.00%) 209.10
napster 129 ( 0.00%) 8760 ( 0.00%) 67.91
realaud 269 ( 0.00%) 23961 ( 0.00%) 89.07
rtsp 26995 ( 0.07%) 40218200 ( 0.12%) 1489.84
icecast 906 ( 0.00%) 124424 ( 0.00%) 137.33
hotline 32 ( 0.00%) 2701 ( 0.00%) 84.41
other 5439427 ( 14.13%) 4341479820 ( 13.22%) 798.15
udp 3560402 ( 9.25%) 1469474511 ( 4.47%) 412.73
dns 380123 ( 0.99%) 78945143 ( 0.24%) 207.68
rip 1 ( 0.00%) 70 ( 0.00%) 70.00
realaud 12 ( 0.00%) 1196 ( 0.00%) 99.67
halflif 22 ( 0.00%) 2229 ( 0.00%) 101.32
starcra 50 ( 0.00%) 4955 ( 0.00%) 99.10
everque 264 ( 0.00%) 55884 ( 0.00%) 211.68
unreal 208 ( 0.00%) 66643 ( 0.00%) 320.40
quake 19 ( 0.00%) 2643 ( 0.00%) 139.11
cuseeme 4 ( 0.00%) 316 ( 0.00%) 79.00
other 3179260 ( 8.26%) 1390335771 ( 4.23%) 437.31
icmp 2206046 ( 5.73%) 234651941 ( 0.71%) 106.37
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 1805 ( 0.00%) 596158 ( 0.00%) 330.28
ip6 1746966 ( 4.54%) 1176421284 ( 3.58%) 673.41
pim 253 ( 0.00%) 15180 ( 0.00%) 60.00
other 21391 ( 0.06%) 3535979 ( 0.01%) 165.30
frag 2834 ( 0.01%) 2243209 ( 0.01%) 791.53
ip6 519121 ( 1.35%) 620460560 ( 1.89%) 1195.21
tcp6 439275 ( 1.14%) 604572302 ( 1.84%) 1376.30
http(s) 15378 ( 0.04%) 19148238 ( 0.06%) 1245.17
http(c) 26759 ( 0.07%) 3139144 ( 0.01%) 117.31
smtp 258 ( 0.00%) 123725 ( 0.00%) 479.55
ftp 24 ( 0.00%) 1893 ( 0.00%) 78.88
dns 246 ( 0.00%) 56744 ( 0.00%) 230.67
bgp 91 ( 0.00%) 15078 ( 0.00%) 165.69
other 396519 ( 1.03%) 582087480 ( 1.77%) 1467.99
udp6 51709 ( 0.13%) 11560373 ( 0.04%) 223.57
dns 46490 ( 0.12%) 10826459 ( 0.03%) 232.88
starcra 3 ( 0.00%) 319 ( 0.00%) 106.33
everque 2 ( 0.00%) 221 ( 0.00%) 110.50
quake 1 ( 0.00%) 113 ( 0.00%) 113.00
other 5213 ( 0.01%) 733261 ( 0.00%) 140.66
icmp6 27207 ( 0.07%) 3595244 ( 0.01%) 132.14
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 816 ( 0.00%) 717149 ( 0.00%) 878.86
tcpdump file: 201203302230.dump.gz (861.55 MB)