Traffic Trace Info


DumpFile: 201410020300.dump
FileSize: 4493.41MB
Id: 201410020300
StartTime: Thu Oct 2 03:00:01 2014
EndTime: Thu Oct 2 03:15:00 2014
TotalTime: 899.57 seconds
TotalCapSize: 3419.70MB CapLen: 96 bytes
# of packets: 70365738 (19796.93MB)
AvgRate: 184.64Mbps stddev:88.27M

IP flow (unique src/dst pair) Information

# of flows: 40153026 (avg. 1.75 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.0% 4.0% 3.9% 3.2% 2.8% 2.2% 2.1% 1.7% 1.5% 1.3%

IP address Information

# of IPv4 addresses: 29451323
Top 10 bandwidth usage (bytes/total in %):
12.3% 10.0% 9.2% 6.2% 5.1% 4.3% 4.2% 4.2% 4.1% 4.0%
# of IPv6 addresses: 12022
Top 10 bandwidth usage (bytes/total in %):
23.3% 12.1% 11.5% 11.4% 10.7% 9.4% 9.1% 7.5% 7.1% 6.0%

Aggregated Flow Summary (using agurim)

[agurim byte plot] [agurim packets plot]

Packet Size Distribution (including MAC headers)

[packet size distribution]
detailed numbers

Protocol Breakdown 

     protocol		packets			bytes		bytes/pkt
------------------------------------------------------------------------
 total         70365738 (100.00%)      20758590831 (100.00%)    295.01
 ip            68341862 ( 97.12%)      19875184272 ( 95.74%)    290.82
  tcp          22774941 ( 32.37%)      14595318735 ( 70.31%)    640.85
   http        15758951 ( 22.40%)      11131126849 ( 53.62%)    706.34
   https        1312071 (  1.86%)        928196153 (  4.47%)    707.43
   smtp           64203 (  0.09%)         23625060 (  0.11%)    367.97
   ftp            33293 (  0.05%)          2273551 (  0.01%)     68.29
   ssh           815032 (  1.16%)         76355658 (  0.37%)     93.68
   dns             8708 (  0.01%)          1453403 (  0.01%)    166.90
   bgp             2108 (  0.00%)           368640 (  0.00%)    174.88
   other        4780575 (  6.79%)       2431919421 ( 11.72%)    508.71
  udp           2358523 (  3.35%)       1076326975 (  5.18%)    456.36
   dns           506732 (  0.72%)        197945387 (  0.95%)    390.63
   other        1838616 (  2.61%)        876938028 (  4.22%)    476.96
  icmp         41095442 ( 58.40%)       2548021016 ( 12.27%)     62.00
  ipip              185 (  0.00%)            19270 (  0.00%)    104.16
  gre            809544 (  1.15%)        583449827 (  2.81%)    720.71
  ipsec          267174 (  0.38%)        395945984 (  1.91%)   1481.98
  ip6           1036052 (  1.47%)        676102405 (  3.26%)    652.58
  other               1 (  0.00%)               60 (  0.00%)     60.00
  frag           137299 (  0.20%)        173179083 (  0.83%)   1261.33
 ip6            2023874 (  2.88%)        883406439 (  4.26%)    436.49
  tcp6          1921564 (  2.73%)        862832791 (  4.16%)    449.03
   http          601676 (  0.86%)        417116907 (  2.01%)    693.26
   https         254226 (  0.36%)        251609695 (  1.21%)    989.71
   smtp             566 (  0.00%)           269452 (  0.00%)    476.06
   ftp             6731 (  0.01%)           711415 (  0.00%)    105.69
   ssh            37612 (  0.05%)         53189413 (  0.26%)   1414.16
   dns             2213 (  0.00%)           384225 (  0.00%)    173.62
   bgp             1138 (  0.00%)           199190 (  0.00%)    175.04
   other        1017402 (  1.45%)        139352494 (  0.67%)    136.97
  udp6            53253 (  0.08%)         13788891 (  0.07%)    258.93
   dns            46954 (  0.07%)         12957575 (  0.06%)    275.96
   other           6299 (  0.01%)           831316 (  0.00%)    131.98
  icmp6           48060 (  0.07%)          5892463 (  0.03%)    122.61
  ip                 84 (  0.00%)            11462 (  0.00%)    136.45
  pim6               30 (  0.00%)             4080 (  0.00%)    136.00
  other6            883 (  0.00%)           876752 (  0.00%)    992.92


tcpdump file: 201410020300.dump.gz (1388.87 MB)