Traffic Trace Info
DumpFile: 201203311245.dump
FileSize: 2717.10MB
Id: 201203311245
StartTime: Sat Mar 31 12:45:00 2012
EndTime: Sat Mar 31 13:00:01 2012
TotalTime: 900.79 seconds
TotalCapSize: -1948.58MB CapLen: 96 bytes
# of packets: 37333615 (28317.37MB)
AvgRate: 263.72Mbps stddev:41.02M
IP flow (unique src/dst pair) Information
# of flows: 1825508 (avg. 20.45 pkts/flow)
Top 10 big flow size (bytes/total in %):
11.2% 5.6% 3.7% 3.6% 1.9% 1.6% 1.6% 1.5% 1.3% 1.2%
IP address Information
# of IPv4 addresses: 1421907
Top 10 bandwidth usage (bytes/total in %):
16.8% 12.4% 9.4% 6.3% 6.0% 5.5% 5.1% 4.5% 3.2% 3.1%
# of IPv6 addresses: 5066
Top 10 bandwidth usage (bytes/total in %):
99.1% 65.8% 33.1% 0.4% 0.3% 0.1% 0.1% 0.1% 0.1% 0.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203311245.pktlen.png)
detailed numbers
[ 32- 63]: 7643460
[ 64- 127]: 8313835
[ 128- 255]: 1021157
[ 256- 511]: 748861
[ 512- 1023]: 866810
[ 1024- 2047]: 18739492
Protocol Breakdown
![[protocol breakdown chart]](201203311245.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37333615 (100.00%) 29692919140 (100.00%) 795.34
ip 33764973 ( 90.44%) 24630950865 ( 82.95%) 729.48
tcp 20476098 ( 54.85%) 17473411144 ( 58.85%) 853.36
http(s) 9979736 ( 26.73%) 13725532144 ( 46.22%) 1375.34
http(c) 4511027 ( 12.08%) 682425968 ( 2.30%) 151.28
squid 135540 ( 0.36%) 94425737 ( 0.32%) 696.66
smtp 33865 ( 0.09%) 8487569 ( 0.03%) 250.63
nntp 12 ( 0.00%) 748 ( 0.00%) 62.33
ftp 18754 ( 0.05%) 4062006 ( 0.01%) 216.59
pop3 1967 ( 0.01%) 533673 ( 0.00%) 271.31
imap 827 ( 0.00%) 124596 ( 0.00%) 150.66
telnet 59 ( 0.00%) 4060 ( 0.00%) 68.81
ssh 956244 ( 2.56%) 201888293 ( 0.68%) 211.13
dns 9789 ( 0.03%) 907303 ( 0.00%) 92.69
bgp 721 ( 0.00%) 134332 ( 0.00%) 186.31
napster 105 ( 0.00%) 7032 ( 0.00%) 66.97
realaud 324 ( 0.00%) 20505 ( 0.00%) 63.29
rtsp 34581 ( 0.09%) 49904349 ( 0.17%) 1443.11
icecast 7406 ( 0.02%) 2663750 ( 0.01%) 359.67
hotline 28 ( 0.00%) 2658 ( 0.00%) 94.93
other 4785112 ( 12.82%) 2702286361 ( 9.10%) 564.73
udp 8337932 ( 22.33%) 5400042365 ( 18.19%) 647.65
dns 512204 ( 1.37%) 153776423 ( 0.52%) 300.22
realaud 6 ( 0.00%) 2834 ( 0.00%) 472.33
halflif 19 ( 0.00%) 2462 ( 0.00%) 129.58
starcra 31 ( 0.00%) 2885 ( 0.00%) 93.06
everque 260 ( 0.00%) 63066 ( 0.00%) 242.56
unreal 86 ( 0.00%) 23106 ( 0.00%) 268.67
quake 13 ( 0.00%) 1635 ( 0.00%) 125.77
cuseeme 1 ( 0.00%) 72 ( 0.00%) 72.00
other 6158113 ( 16.49%) 5144568716 ( 17.33%) 835.41
icmp 1698650 ( 4.55%) 149387424 ( 0.50%) 87.94
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 11339 ( 0.03%) 5291346 ( 0.02%) 466.65
ip6 3201962 ( 8.58%) 1598406378 ( 5.38%) 499.20
pim 298 ( 0.00%) 17880 ( 0.00%) 60.00
other 38509 ( 0.10%) 4375058 ( 0.01%) 113.61
frag 4037795 ( 10.82%) 3076366945 ( 10.36%) 761.89
ip6 3568642 ( 9.56%) 5061968275 ( 17.05%) 1418.46
tcp6 3491795 ( 9.35%) 5042056759 ( 16.98%) 1443.97
http(s) 9343 ( 0.03%) 11261225 ( 0.04%) 1205.31
http(c) 31794 ( 0.09%) 2936547 ( 0.01%) 92.36
squid 9 ( 0.00%) 762 ( 0.00%) 84.67
smtp 566 ( 0.00%) 225382 ( 0.00%) 398.20
ftp 86 ( 0.00%) 11474 ( 0.00%) 133.42
dns 91 ( 0.00%) 13615 ( 0.00%) 149.62
bgp 87 ( 0.00%) 15116 ( 0.00%) 173.75
other 3449819 ( 9.24%) 5027592638 ( 16.93%) 1457.35
udp6 48235 ( 0.13%) 15315666 ( 0.05%) 317.52
dns 41081 ( 0.11%) 9891358 ( 0.03%) 240.78
realaud 1 ( 0.00%) 107 ( 0.00%) 107.00
halflif 1 ( 0.00%) 115 ( 0.00%) 115.00
quake 4 ( 0.00%) 424 ( 0.00%) 106.00
other 7148 ( 0.02%) 5423662 ( 0.02%) 758.77
icmp6 27475 ( 0.07%) 3761352 ( 0.01%) 136.90
ip6 85 ( 0.00%) 11580 ( 0.00%) 136.24
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 1021 ( 0.00%) 818702 ( 0.00%) 801.86
tcpdump file: 201203311245.dump.gz (792.75 MB)