Traffic Trace Info


DumpFile: 201410020200.dump
FileSize: 4881.74MB
Id: 201410020200
StartTime: Thu Oct 2 02:00:00 2014
EndTime: Thu Oct 2 02:15:00 2014
TotalTime: 899.85 seconds
TotalCapSize: 3749.41MB CapLen: 96 bytes
# of packets: 74208155 (26034.35MB)
AvgRate: 242.65Mbps stddev:45.30M

IP flow (unique src/dst pair) Information

# of flows: 34204830 (avg. 2.17 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.5% 6.3% 5.5% 3.5% 3.0% 2.4% 1.7% 1.7% 1.6% 1.5%

IP address Information

# of IPv4 addresses: 23996797
Top 10 bandwidth usage (bytes/total in %):
17.9% 16.5% 8.2% 7.2% 6.9% 6.0% 5.3% 3.8% 3.7% 3.7%
# of IPv6 addresses: 11823
Top 10 bandwidth usage (bytes/total in %):
22.4% 22.4% 20.5% 7.5% 7.3% 7.2% 5.3% 5.3% 5.1% 5.1%

Aggregated Flow Summary (using agurim)

[agurim byte plot] [agurim packets plot]

Packet Size Distribution (including MAC headers)

[packet size distribution]
detailed numbers

Protocol Breakdown 

     protocol		packets			bytes		bytes/pkt
------------------------------------------------------------------------
 total         74208155 (100.00%)      27298995715 (100.00%)    367.87
 ip            70948563 ( 95.61%)      25425330025 ( 93.14%)    358.36
  tcp          30626717 ( 41.27%)      19900208935 ( 72.90%)    649.77
   http        19344739 ( 26.07%)      12899590901 ( 47.25%)    666.83
   https        1744207 (  2.35%)       1388160613 (  5.09%)    795.87
   smtp           49626 (  0.07%)         10074302 (  0.04%)    203.00
   ftp            18958 (  0.03%)          1281301 (  0.00%)     67.59
   ssh          1221787 (  1.65%)        148263985 (  0.54%)    121.35
   dns            10374 (  0.01%)          2652491 (  0.01%)    255.69
   bgp             2090 (  0.00%)           361281 (  0.00%)    172.86
   other        8234935 ( 11.10%)       5449824001 ( 19.96%)    661.79
  udp           3763197 (  5.07%)       2308826545 (  8.46%)    613.53
   dns           534735 (  0.72%)        205452745 (  0.75%)    384.21
   other        3226608 (  4.35%)       2101000845 (  7.70%)    651.15
  icmp         34889503 ( 47.02%)       2174772527 (  7.97%)     62.33
  ipip              184 (  0.00%)            19160 (  0.00%)    104.13
  gre            863622 (  1.16%)        642353832 (  2.35%)    743.79
  ipsec            5930 (  0.01%)          4611400 (  0.02%)    777.64
  ip6            799407 (  1.08%)        394537376 (  1.45%)    493.54
  other               3 (  0.00%)              250 (  0.00%)     83.33
  frag           152517 (  0.21%)        175105150 (  0.64%)   1148.10
 ip6            3259592 (  4.39%)       1873665690 (  6.86%)    574.82
  tcp6          3156537 (  4.25%)       1853761821 (  6.79%)    587.28
   http          950730 (  1.28%)       1033342879 (  3.79%)   1086.89
   https         538688 (  0.73%)        603180609 (  2.21%)   1119.72
   smtp             360 (  0.00%)           181491 (  0.00%)    504.14
   ftp              287 (  0.00%)            27913 (  0.00%)     97.26
   ssh            30205 (  0.04%)         43654503 (  0.16%)   1445.27
   dns             2186 (  0.00%)           381090 (  0.00%)    174.33
   bgp             1014 (  0.00%)           171980 (  0.00%)    169.61
   other        1633067 (  2.20%)        172821356 (  0.63%)    105.83
  udp6            54045 (  0.07%)         13355895 (  0.05%)    247.13
   dns            48469 (  0.07%)         12410101 (  0.05%)    256.04
   other           5576 (  0.01%)           945794 (  0.00%)    169.62
  icmp6           48282 (  0.07%)          5912086 (  0.02%)    122.45
  ip                 84 (  0.00%)            11412 (  0.00%)    135.86
  pim6               30 (  0.00%)             4080 (  0.00%)    136.00
  other6            614 (  0.00%)           620396 (  0.00%)   1010.42


tcpdump file: 201410020200.dump.gz (1512.48 MB)