Traffic Trace Info
DumpFile: 201203311230.dump
FileSize: 2331.06MB
Id: 201203311230
StartTime: Sat Mar 31 12:30:00 2012
EndTime: Sat Mar 31 12:45:00 2012
TotalTime: 899.79 seconds
TotalCapSize: 1823.64MB CapLen: 96 bytes
# of packets: 33253638 (24277.76MB)
AvgRate: 226.32Mbps stddev:44.49M
IP flow (unique src/dst pair) Information
# of flows: 1816725 (avg. 18.30 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.9% 2.8% 2.8% 1.7% 1.5% 1.4% 1.3% 1.3% 1.3% 1.1%
IP address Information
# of IPv4 addresses: 1422687
Top 10 bandwidth usage (bytes/total in %):
22.0% 12.0% 10.1% 6.2% 4.4% 3.9% 3.6% 3.4% 3.4% 3.0%
# of IPv6 addresses: 4886
Top 10 bandwidth usage (bytes/total in %):
37.3% 36.5% 35.0% 33.6% 5.5% 5.5% 3.7% 2.6% 2.0% 2.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203311230.pktlen.png)
detailed numbers
[ 32- 63]: 7498251
[ 64- 127]: 7211824
[ 128- 255]: 1079142
[ 256- 511]: 697007
[ 512- 1023]: 910262
[ 1024- 2047]: 15857152
Protocol Breakdown
![[protocol breakdown chart]](201203311230.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 33253638 (100.00%) 25457072534 (100.00%) 765.54
ip 33080001 ( 99.48%) 25352755131 ( 99.59%) 766.41
tcp 22021059 ( 66.22%) 19159504586 ( 75.26%) 870.05
http(s) 11700335 ( 35.19%) 16094045645 ( 63.22%) 1375.52
http(c) 4398083 ( 13.23%) 485709487 ( 1.91%) 110.44
squid 134269 ( 0.40%) 90735980 ( 0.36%) 675.78
smtp 30243 ( 0.09%) 6409263 ( 0.03%) 211.93
ftp 11246 ( 0.03%) 2099490 ( 0.01%) 186.69
pop3 1754 ( 0.01%) 533663 ( 0.00%) 304.25
imap 1453 ( 0.00%) 390421 ( 0.00%) 268.70
telnet 54 ( 0.00%) 3674 ( 0.00%) 68.04
ssh 1259308 ( 3.79%) 189209040 ( 0.74%) 150.25
dns 4842 ( 0.01%) 473179 ( 0.00%) 97.72
bgp 1167 ( 0.00%) 816356 ( 0.00%) 699.53
napster 188 ( 0.00%) 12410 ( 0.00%) 66.01
realaud 14 ( 0.00%) 1655 ( 0.00%) 118.21
rtsp 27036 ( 0.08%) 40280670 ( 0.16%) 1489.89
icecast 14626 ( 0.04%) 10810737 ( 0.04%) 739.15
hotline 19 ( 0.00%) 1580 ( 0.00%) 83.16
other 4436422 ( 13.34%) 2237971336 ( 8.79%) 504.45
udp 7098359 ( 21.35%) 4400858498 ( 17.29%) 619.98
dns 539622 ( 1.62%) 160789702 ( 0.63%) 297.97
realaud 9 ( 0.00%) 1146 ( 0.00%) 127.33
halflif 11 ( 0.00%) 911 ( 0.00%) 82.82
starcra 35 ( 0.00%) 3325 ( 0.00%) 95.00
everque 302 ( 0.00%) 61431 ( 0.00%) 203.41
unreal 63 ( 0.00%) 37358 ( 0.00%) 592.98
quake 9 ( 0.00%) 1481 ( 0.00%) 164.56
cuseeme 4 ( 0.00%) 362 ( 0.00%) 90.50
other 5520001 ( 16.60%) 4175718908 ( 16.40%) 756.47
icmp 1756552 ( 5.28%) 154405376 ( 0.61%) 87.90
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 4593 ( 0.01%) 1496214 ( 0.01%) 325.76
ip6 2196709 ( 6.61%) 1636112306 ( 6.43%) 744.80
pim 317 ( 0.00%) 19020 ( 0.00%) 60.00
other 2228 ( 0.01%) 339971 ( 0.00%) 152.59
frag 3217269 ( 9.67%) 2448770921 ( 9.62%) 761.13
ip6 173637 ( 0.52%) 104317403 ( 0.41%) 600.78
tcp6 103308 ( 0.31%) 90263662 ( 0.35%) 873.73
http(s) 6411 ( 0.02%) 5378010 ( 0.02%) 838.87
http(c) 34447 ( 0.10%) 3979595 ( 0.02%) 115.53
squid 5 ( 0.00%) 560 ( 0.00%) 112.00
smtp 228 ( 0.00%) 93656 ( 0.00%) 410.77
ftp 199 ( 0.00%) 25087 ( 0.00%) 126.07
dns 218 ( 0.00%) 44759 ( 0.00%) 205.32
bgp 91 ( 0.00%) 15316 ( 0.00%) 168.31
other 61709 ( 0.19%) 80726679 ( 0.32%) 1308.18
udp6 42054 ( 0.13%) 9923544 ( 0.04%) 235.97
dns 40400 ( 0.12%) 9692541 ( 0.04%) 239.91
realaud 2 ( 0.00%) 213 ( 0.00%) 106.50
halflif 1 ( 0.00%) 108 ( 0.00%) 108.00
everque 3 ( 0.00%) 323 ( 0.00%) 107.67
quake 2 ( 0.00%) 221 ( 0.00%) 110.50
other 1646 ( 0.00%) 230138 ( 0.00%) 139.82
icmp6 27802 ( 0.08%) 3773231 ( 0.01%) 135.72
ip6 82 ( 0.00%) 11176 ( 0.00%) 136.29
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 361 ( 0.00%) 341710 ( 0.00%) 946.57
tcpdump file: 201203311230.dump.gz (733.52 MB)