Traffic Trace Info
DumpFile: 201204011115.dump
FileSize: 1737.69MB
Id: 201204011115
StartTime: Sun Apr 1 11:15:00 2012
EndTime: Sun Apr 1 11:30:01 2012
TotalTime: 900.29 seconds
TotalCapSize: 1374.88MB CapLen: 96 bytes
# of packets: 23777066 (17912.32MB)
AvgRate: 166.90Mbps stddev:34.11M
IP flow (unique src/dst pair) Information
# of flows: 1846656 (avg. 12.88 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.5% 4.6% 3.7% 3.0% 1.8% 1.6% 1.6% 1.6% 1.4% 1.3%
IP address Information
# of IPv4 addresses: 1426123
Top 10 bandwidth usage (bytes/total in %):
16.8% 11.5% 8.1% 6.8% 5.4% 5.1% 4.8% 4.2% 4.1% 3.9%
# of IPv6 addresses: 4558
Top 10 bandwidth usage (bytes/total in %):
67.0% 20.8% 20.8% 6.4% 5.9% 5.8% 5.7% 5.3% 5.2% 5.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201204011115.pktlen.png)
detailed numbers
[ 32- 63]: 4405969
[ 64- 127]: 5586652
[ 128- 255]: 895848
[ 256- 511]: 489706
[ 512- 1023]: 613807
[ 1024- 2047]: 11785084
Protocol Breakdown
![[protocol breakdown chart]](201204011115.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 23777066 (100.00%) 18782424471 (100.00%) 789.94
ip 23506759 ( 98.86%) 18574438023 ( 98.89%) 790.17
tcp 17138303 ( 72.08%) 15894872081 ( 84.63%) 927.45
http(s) 7436724 ( 31.28%) 10252921760 ( 54.59%) 1378.69
http(c) 3051068 ( 12.83%) 826698971 ( 4.40%) 270.95
squid 18647 ( 0.08%) 10222409 ( 0.05%) 548.21
smtp 30718 ( 0.13%) 6356330 ( 0.03%) 206.93
nntp 19 ( 0.00%) 1166 ( 0.00%) 61.37
ftp 7631 ( 0.03%) 844271 ( 0.00%) 110.64
pop3 2378 ( 0.01%) 886772 ( 0.00%) 372.91
imap 1687 ( 0.01%) 291668 ( 0.00%) 172.89
telnet 5272 ( 0.02%) 386789 ( 0.00%) 73.37
ssh 1410220 ( 5.93%) 1260828380 ( 6.71%) 894.07
dns 3411 ( 0.01%) 369170 ( 0.00%) 108.23
bgp 620 ( 0.00%) 110458 ( 0.00%) 178.16
napster 221 ( 0.00%) 14316 ( 0.00%) 64.78
realaud 19 ( 0.00%) 1224 ( 0.00%) 64.42
rtsp 21549 ( 0.09%) 30241463 ( 0.16%) 1403.38
icecast 609 ( 0.00%) 156444 ( 0.00%) 256.89
hotline 9 ( 0.00%) 554 ( 0.00%) 61.56
other 5147501 ( 21.65%) 3504539936 ( 18.66%) 680.82
udp 2799616 ( 11.77%) 974217136 ( 5.19%) 347.98
dns 331488 ( 1.39%) 81911183 ( 0.44%) 247.10
rip 1 ( 0.00%) 70 ( 0.00%) 70.00
realaud 6 ( 0.00%) 839 ( 0.00%) 139.83
halflif 64 ( 0.00%) 7990 ( 0.00%) 124.84
starcra 23 ( 0.00%) 1736 ( 0.00%) 75.48
everque 281 ( 0.00%) 77492 ( 0.00%) 275.77
unreal 20 ( 0.00%) 2531 ( 0.00%) 126.55
quake 15 ( 0.00%) 1918 ( 0.00%) 127.87
cuseeme 1 ( 0.00%) 93 ( 0.00%) 93.00
other 2467445 ( 10.38%) 892173303 ( 4.75%) 361.58
icmp 1701007 ( 7.15%) 137023142 ( 0.73%) 80.55
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 2662 ( 0.01%) 913812 ( 0.00%) 343.28
ip6 1780533 ( 7.49%) 1530781936 ( 8.15%) 859.73
pim 269 ( 0.00%) 16140 ( 0.00%) 60.00
other 84184 ( 0.35%) 36594506 ( 0.19%) 434.70
frag 1046 ( 0.00%) 874304 ( 0.00%) 835.85
ip6 270307 ( 1.14%) 207986448 ( 1.11%) 769.45
tcp6 200176 ( 0.84%) 195111060 ( 1.04%) 974.70
http(s) 2666 ( 0.01%) 2422052 ( 0.01%) 908.50
http(c) 10585 ( 0.04%) 938956 ( 0.00%) 88.71
smtp 80 ( 0.00%) 46632 ( 0.00%) 582.90
dns 139 ( 0.00%) 14323 ( 0.00%) 103.04
bgp 88 ( 0.00%) 12232 ( 0.00%) 139.00
icecast 3 ( 0.00%) 254 ( 0.00%) 84.67
other 186615 ( 0.78%) 191676611 ( 1.02%) 1027.12
udp6 41866 ( 0.18%) 8644163 ( 0.05%) 206.47
dns 37193 ( 0.16%) 8112100 ( 0.04%) 218.11
starcra 1 ( 0.00%) 114 ( 0.00%) 114.00
everque 2 ( 0.00%) 214 ( 0.00%) 107.00
quake 1 ( 0.00%) 110 ( 0.00%) 110.00
other 4669 ( 0.02%) 531625 ( 0.00%) 113.86
icmp6 27871 ( 0.12%) 3946275 ( 0.02%) 141.59
ip6 83 ( 0.00%) 11344 ( 0.00%) 136.67
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 280 ( 0.00%) 269390 ( 0.00%) 962.11
tcpdump file: 201204011115.dump.gz (546.36 MB)