Traffic Trace Info


DumpFile: 201410020815.dump
FileSize: 4771.51MB
Id: 201410020815
StartTime: Thu Oct 2 08:15:01 2014
EndTime: Thu Oct 2 08:30:00 2014
TotalTime: 899.29 seconds
TotalCapSize: 3655.66MB CapLen: 96 bytes
# of packets: 73127706 (24708.87MB)
AvgRate: 230.43Mbps stddev:118.81M

IP flow (unique src/dst pair) Information

# of flows: 38510585 (avg. 1.90 pkts/flow)
Top 10 big flow size (bytes/total in %):
9.5% 8.0% 7.8% 3.8% 2.5% 2.0% 2.0% 1.8% 1.6% 1.5%

IP address Information

# of IPv4 addresses: 28718359
Top 10 bandwidth usage (bytes/total in %):
22.9% 11.9% 10.0% 6.1% 5.2% 4.9% 4.4% 3.7% 3.4% 3.2%
# of IPv6 addresses: 11071
Top 10 bandwidth usage (bytes/total in %):
82.9% 45.7% 37.8% 4.1% 1.5% 1.5% 1.5% 1.1% 1.0% 1.0%

Aggregated Flow Summary (using agurim)

[agurim byte plot] [agurim packets plot]

Packet Size Distribution (including MAC headers)

[packet size distribution]
detailed numbers

Protocol Breakdown 

     protocol		packets			bytes		bytes/pkt
------------------------------------------------------------------------
 total         73127706 (100.00%)      25909126696 (100.00%)    354.30
 ip            69114248 ( 94.51%)      20455199328 ( 78.95%)    295.96
  tcp          25425543 ( 34.77%)      16472437629 ( 63.58%)    647.87
   http        17062266 ( 23.33%)      12371181526 ( 47.75%)    725.06
   https        1902966 (  2.60%)       1270781795 (  4.90%)    667.79
   smtp           39019 (  0.05%)         11888359 (  0.05%)    304.68
   ftp            16107 (  0.02%)          1025005 (  0.00%)     63.64
   ssh           955499 (  1.31%)        114963206 (  0.44%)    120.32
   dns             7975 (  0.01%)          1241843 (  0.00%)    155.72
   bgp             2092 (  0.00%)           354073 (  0.00%)    169.25
   other        5439619 (  7.44%)       2701001822 ( 10.42%)    496.54
  udp           1384107 (  1.89%)        472359724 (  1.82%)    341.27
   dns           501911 (  0.69%)        168463581 (  0.65%)    335.64
   other         881875 (  1.21%)        303513783 (  1.17%)    344.17
  icmp         40538713 ( 55.44%)       2510870065 (  9.69%)     61.94
  ipip              184 (  0.00%)            19172 (  0.00%)    104.20
  gre            946161 (  1.29%)        752658645 (  2.90%)    795.49
  ipsec           17775 (  0.02%)         23446762 (  0.09%)   1319.09
  ip6            801764 (  1.10%)        223407201 (  0.86%)    278.64
  other               1 (  0.00%)              130 (  0.00%)    130.00
  frag            81169 (  0.11%)        114488566 (  0.44%)   1410.50
 ip6            4013458 (  5.49%)       5453927368 ( 21.05%)   1358.91
  tcp6          3915692 (  5.35%)       5434769150 ( 20.98%)   1387.95
   http         3425411 (  4.68%)       4908335894 ( 18.94%)   1432.92
   https         349349 (  0.48%)        353654262 (  1.36%)   1012.32
   smtp             169 (  0.00%)            53839 (  0.00%)    318.57
   ftp              215 (  0.00%)            19337 (  0.00%)     89.94
   ssh            22360 (  0.03%)         31316740 (  0.12%)   1400.57
   dns             2054 (  0.00%)           340869 (  0.00%)    165.95
   bgp              994 (  0.00%)           166209 (  0.00%)    167.21
   other         115140 (  0.16%)        140882000 (  0.54%)   1223.57
  udp6            48825 (  0.07%)         12733999 (  0.05%)    260.81
   dns            43469 (  0.06%)         12030316 (  0.05%)    276.76
   other           5356 (  0.01%)           703683 (  0.00%)    131.38
  icmp6           48335 (  0.07%)          5918339 (  0.02%)    122.44
  ip                 84 (  0.00%)            11412 (  0.00%)    135.86
  pim6               31 (  0.00%)             4216 (  0.00%)    136.00
  other6            491 (  0.00%)           490252 (  0.00%)    998.48


tcpdump file: 201410020815.dump.gz (1411.26 MB)