Traffic Trace Info


DumpFile: 201410020845.dump
FileSize: 5036.95MB
Id: 201410020845
StartTime: Thu Oct 2 08:45:00 2014
EndTime: Thu Oct 2 09:00:01 2014
TotalTime: 900.61 seconds
TotalCapSize: 3852.30MB CapLen: 96 bytes
# of packets: 77636779 (28001.29MB)
AvgRate: 260.67Mbps stddev:126.48M

IP flow (unique src/dst pair) Information

# of flows: 38713591 (avg. 2.01 pkts/flow)
Top 10 big flow size (bytes/total in %):
8.6% 7.4% 4.2% 2.0% 1.6% 1.2% 1.1% 1.0% 1.0% 0.9%

IP address Information

# of IPv4 addresses: 28981212
Top 10 bandwidth usage (bytes/total in %):
12.7% 9.5% 9.3% 9.0% 8.1% 7.6% 4.5% 3.8% 3.4% 2.6%
# of IPv6 addresses: 12710
Top 10 bandwidth usage (bytes/total in %):
44.2% 15.9% 4.5% 3.6% 2.6% 2.5% 2.5% 2.2% 1.9% 1.8%

Aggregated Flow Summary (using agurim)

[agurim byte plot] [agurim packets plot]

Packet Size Distribution (including MAC headers)

[packet size distribution]
detailed numbers

Protocol Breakdown 

     protocol		packets			bytes		bytes/pkt
------------------------------------------------------------------------
 total         77636779 (100.00%)      29361484936 (100.00%)    378.19
 ip            75652859 ( 97.44%)      27511161033 ( 93.70%)    363.65
  tcp          31635678 ( 40.75%)      23762295329 ( 80.93%)    751.12
   http        22048627 ( 28.40%)      18263632270 ( 62.20%)    828.33
   https        4119642 (  5.31%)       3414999393 ( 11.63%)    828.96
   smtp           88693 (  0.11%)         29112383 (  0.10%)    328.24
   ftp            15883 (  0.02%)          1033830 (  0.00%)     65.09
   ssh           929014 (  1.20%)        100385344 (  0.34%)    108.06
   dns             7920 (  0.01%)          1186920 (  0.00%)    149.86
   bgp             2100 (  0.00%)           340421 (  0.00%)    162.11
   other        4423799 (  5.70%)       1951604768 (  6.65%)    441.16
  udp           1257958 (  1.62%)        356969390 (  1.22%)    283.77
   dns           519079 (  0.67%)        127507625 (  0.43%)    245.64
   other         738726 (  0.95%)        229328823 (  0.78%)    310.44
  icmp         41091526 ( 52.93%)       2541240309 (  8.66%)     61.84
  ipip              186 (  0.00%)            19368 (  0.00%)    104.13
  gre            865282 (  1.11%)        675805589 (  2.30%)    781.02
  ipsec            7064 (  0.01%)          6713500 (  0.02%)    950.38
  ip6            795165 (  1.02%)        168117548 (  0.57%)    211.42
  frag            42166 (  0.05%)         60751240 (  0.21%)   1440.76
 ip6            1983920 (  2.56%)       1850323903 (  6.30%)    932.66
  tcp6          1872991 (  2.41%)       1827627130 (  6.22%)    975.78
   http         1370143 (  1.76%)       1360829590 (  4.63%)    993.20
   https         441106 (  0.57%)        404363995 (  1.38%)    916.70
   smtp             937 (  0.00%)           538655 (  0.00%)    574.87
   ftp               98 (  0.00%)             8938 (  0.00%)     91.20
   ssh            18420 (  0.02%)         26366059 (  0.09%)   1431.38
   dns             2103 (  0.00%)           347232 (  0.00%)    165.11
   bgp              898 (  0.00%)           149877 (  0.00%)    166.90
   other          39286 (  0.05%)         35022784 (  0.12%)    891.48
  udp6            59518 (  0.08%)         15652537 (  0.05%)    262.99
   dns            51393 (  0.07%)         14676457 (  0.05%)    285.57
   other           8125 (  0.01%)           976080 (  0.00%)    120.13
  icmp6           50486 (  0.07%)          6190156 (  0.02%)    122.61
  ip                 86 (  0.00%)            11648 (  0.00%)    135.44
  pim6               30 (  0.00%)             4080 (  0.00%)    136.00
  other6            809 (  0.00%)           838352 (  0.00%)   1036.28


tcpdump file: 201410020845.dump.gz (1520.62 MB)