Traffic Trace Info


DumpFile: 201410020800.dump
FileSize: 4542.85MB
Id: 201410020800
StartTime: Thu Oct 2 08:00:00 2014
EndTime: Thu Oct 2 08:15:01 2014
TotalTime: 900.81 seconds
TotalCapSize: 3455.61MB CapLen: 96 bytes
# of packets: 71252721 (20679.30MB)
AvgRate: 192.61Mbps stddev:33.57M

IP flow (unique src/dst pair) Information

# of flows: 40528146 (avg. 1.76 pkts/flow)
Top 10 big flow size (bytes/total in %):
10.7% 5.6% 4.1% 3.3% 2.3% 2.1% 2.1% 2.1% 1.1% 1.1%

IP address Information

# of IPv4 addresses: 30409305
Top 10 bandwidth usage (bytes/total in %):
30.0% 12.3% 11.4% 6.0% 4.7% 4.7% 4.5% 4.4% 4.3% 3.9%
# of IPv6 addresses: 11807
Top 10 bandwidth usage (bytes/total in %):
13.3% 12.9% 10.8% 10.8% 8.8% 8.8% 7.9% 7.4% 6.5% 6.3%

Aggregated Flow Summary (using agurim)

[agurim byte plot] [agurim packets plot]

Packet Size Distribution (including MAC headers)

[packet size distribution]
detailed numbers

Protocol Breakdown 

     protocol		packets			bytes		bytes/pkt
------------------------------------------------------------------------
 total         71252721 (100.00%)      21683822048 (100.00%)    304.32
 ip            70143507 ( 98.44%)      20617974447 ( 95.08%)    293.94
  tcp          24547966 ( 34.45%)      16378342636 ( 75.53%)    667.20
   http        16165762 ( 22.69%)      12332050960 ( 56.87%)    762.85
   https        1901959 (  2.67%)       1400886013 (  6.46%)    736.55
   smtp           48245 (  0.07%)         15331494 (  0.07%)    317.78
   ftp            17150 (  0.02%)          1098697 (  0.01%)     64.06
   ssh           820252 (  1.15%)         84054396 (  0.39%)    102.47
   dns             8424 (  0.01%)          1260157 (  0.01%)    149.59
   bgp             2117 (  0.00%)           366732 (  0.00%)    173.23
   other        5584056 (  7.84%)       2543294127 ( 11.73%)    455.46
  udp           1392782 (  1.95%)        438047458 (  2.02%)    314.51
   dns           536533 (  0.75%)        150098580 (  0.69%)    279.76
   other         856087 (  1.20%)        287788387 (  1.33%)    336.17
  icmp         42263103 ( 59.31%)       2611455089 ( 12.04%)     61.79
  ipip              185 (  0.00%)            19258 (  0.00%)    104.10
  gre           1131214 (  1.59%)        940988679 (  4.34%)    831.84
  ipsec            4927 (  0.01%)          3622006 (  0.02%)    735.13
  ip6            803328 (  1.13%)        245499061 (  1.13%)    305.60
  other               2 (  0.00%)              260 (  0.00%)    130.00
  frag            58557 (  0.08%)         83527881 (  0.39%)   1426.44
 ip6            1109214 (  1.56%)       1065847601 (  4.92%)    960.90
  tcp6          1006034 (  1.41%)       1045493905 (  4.82%)   1039.22
   http          495978 (  0.70%)        474225492 (  2.19%)    956.14
   https         359645 (  0.50%)        377019551 (  1.74%)   1048.31
   smtp             877 (  0.00%)           601834 (  0.00%)    686.24
   ftp              292 (  0.00%)            28467 (  0.00%)     97.49
   ssh            20551 (  0.03%)         29485656 (  0.14%)   1434.76
   dns             2230 (  0.00%)           392927 (  0.00%)    176.20
   bgp              947 (  0.00%)           162008 (  0.00%)    171.07
   other         125514 (  0.18%)        163577970 (  0.75%)   1303.26
  udp6            52630 (  0.07%)         13610627 (  0.06%)    258.61
   dns            46557 (  0.07%)         12856447 (  0.06%)    276.14
   other           6073 (  0.01%)           754180 (  0.00%)    124.19
  icmp6           49816 (  0.07%)          6095231 (  0.03%)    122.35
  ip                 85 (  0.00%)            11580 (  0.00%)    136.24
  pim6               30 (  0.00%)             4080 (  0.00%)    136.00
  other6            619 (  0.00%)           632178 (  0.00%)   1021.29


tcpdump file: 201410020800.dump.gz (1386.85 MB)