Traffic Trace Info
DumpFile: 201203311045.dump
FileSize: 1856.00MB
Id: 201203311045
StartTime: Sat Mar 31 10:45:00 2012
EndTime: Sat Mar 31 11:00:00 2012
TotalTime: 900.41 seconds
TotalCapSize: 1458.42MB CapLen: 96 bytes
# of packets: 26055155 (18811.31MB)
AvgRate: 175.30Mbps stddev:32.25M
IP flow (unique src/dst pair) Information
# of flows: 2050459 (avg. 12.71 pkts/flow)
Top 10 big flow size (bytes/total in %):
11.4% 2.0% 1.7% 1.4% 1.3% 1.3% 1.2% 1.2% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 1523292
Top 10 bandwidth usage (bytes/total in %):
15.0% 12.6% 11.6% 10.1% 6.4% 5.4% 4.0% 3.8% 3.1% 2.5%
# of IPv6 addresses: 4524
Top 10 bandwidth usage (bytes/total in %):
52.7% 20.0% 14.8% 11.7% 9.8% 5.0% 3.8% 3.2% 1.9% 1.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203311045.pktlen.png)
detailed numbers
[ 32- 63]: 6179289
[ 64- 127]: 5474091
[ 128- 255]: 900392
[ 256- 511]: 471566
[ 512- 1023]: 692053
[ 1024- 2047]: 12337764
Protocol Breakdown
![[protocol breakdown chart]](201203311045.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 26055155 (100.00%) 19725085294 (100.00%) 757.05
ip 25931199 ( 99.52%) 19685061116 ( 99.80%) 759.13
tcp 19722079 ( 75.69%) 16983508802 ( 86.10%) 861.14
http(s) 9972936 ( 38.28%) 13432713819 ( 68.10%) 1346.92
http(c) 4862297 ( 18.66%) 521713302 ( 2.64%) 107.30
squid 62559 ( 0.24%) 43239695 ( 0.22%) 691.18
smtp 67356 ( 0.26%) 54783227 ( 0.28%) 813.34
nntp 24 ( 0.00%) 1496 ( 0.00%) 62.33
ftp 9547 ( 0.04%) 841985 ( 0.00%) 88.19
pop3 2745 ( 0.01%) 1206398 ( 0.01%) 439.49
imap 2748 ( 0.01%) 725886 ( 0.00%) 264.15
telnet 705 ( 0.00%) 49378 ( 0.00%) 70.04
ssh 20500 ( 0.08%) 3739555 ( 0.02%) 182.42
dns 4728 ( 0.02%) 441497 ( 0.00%) 93.38
bgp 697 ( 0.00%) 105416 ( 0.00%) 151.24
napster 82 ( 0.00%) 6403 ( 0.00%) 78.09
realaud 6 ( 0.00%) 378 ( 0.00%) 63.00
rtsp 4 ( 0.00%) 240 ( 0.00%) 60.00
icecast 373 ( 0.00%) 55161 ( 0.00%) 147.88
hotline 12 ( 0.00%) 2178 ( 0.00%) 181.50
other 4714759 ( 18.10%) 2923882728 ( 14.82%) 620.16
udp 3206624 ( 12.31%) 1418746246 ( 7.19%) 442.44
dns 395216 ( 1.52%) 122954469 ( 0.62%) 311.11
rip 1 ( 0.00%) 68 ( 0.00%) 68.00
realaud 9 ( 0.00%) 903 ( 0.00%) 100.33
halflif 36 ( 0.00%) 3714 ( 0.00%) 103.17
starcra 18 ( 0.00%) 2045 ( 0.00%) 113.61
everque 331 ( 0.00%) 71156 ( 0.00%) 214.97
unreal 88 ( 0.00%) 36171 ( 0.00%) 411.03
quake 10 ( 0.00%) 1079 ( 0.00%) 107.90
other 2733136 ( 10.49%) 1290972170 ( 6.54%) 472.34
icmp 1637667 ( 6.29%) 157923435 ( 0.80%) 96.43
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 27396 ( 0.11%) 15222984 ( 0.08%) 555.66
ip6 1335938 ( 5.13%) 1109490597 ( 5.62%) 830.50
pim 279 ( 0.00%) 16740 ( 0.00%) 60.00
other 1031 ( 0.00%) 133042 ( 0.00%) 129.04
frag 218146 ( 0.84%) 166536612 ( 0.84%) 763.42
ip6 123956 ( 0.48%) 40024178 ( 0.20%) 322.89
tcp6 54015 ( 0.21%) 26708088 ( 0.14%) 494.46
http(s) 7717 ( 0.03%) 9515620 ( 0.05%) 1233.07
http(c) 26407 ( 0.10%) 2405844 ( 0.01%) 91.11
smtp 63 ( 0.00%) 11665 ( 0.00%) 185.16
ftp 133 ( 0.00%) 14905 ( 0.00%) 112.07
ssh 104 ( 0.00%) 22158 ( 0.00%) 213.06
dns 139 ( 0.00%) 21563 ( 0.00%) 155.13
bgp 96 ( 0.00%) 24758 ( 0.00%) 257.90
other 19356 ( 0.07%) 14691575 ( 0.07%) 759.02
udp6 42495 ( 0.16%) 9293484 ( 0.05%) 218.70
dns 39182 ( 0.15%) 8939708 ( 0.05%) 228.16
halflif 1 ( 0.00%) 117 ( 0.00%) 117.00
quake 1 ( 0.00%) 105 ( 0.00%) 105.00
cuseeme 1 ( 0.00%) 105 ( 0.00%) 105.00
other 3310 ( 0.01%) 353449 ( 0.00%) 106.78
icmp6 26981 ( 0.10%) 3655897 ( 0.02%) 135.50
ip6 85 ( 0.00%) 11530 ( 0.00%) 135.65
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 349 ( 0.00%) 350963 ( 0.00%) 1005.62
tcpdump file: 201203311045.dump.gz (581.19 MB)