Traffic Trace Info


DumpFile: 201410020900.dump
FileSize: 5694.14MB
Id: 201410020900
StartTime: Thu Oct 2 09:00:01 2014
EndTime: Thu Oct 2 09:15:00 2014
TotalTime: 899.23 seconds
TotalCapSize: 4377.94MB CapLen: 96 bytes
# of packets: 86257694 (35957.95MB)
AvgRate: 335.27Mbps stddev:127.12M

IP flow (unique src/dst pair) Information

# of flows: 36048856 (avg. 2.39 pkts/flow)
Top 10 big flow size (bytes/total in %):
19.7% 5.2% 3.4% 1.8% 1.8% 1.7% 1.1% 1.0% 0.9% 0.9%

IP address Information

# of IPv4 addresses: 26899599
Top 10 bandwidth usage (bytes/total in %):
24.5% 21.5% 6.3% 6.3% 5.6% 5.2% 3.6% 3.6% 2.7% 2.6%
# of IPv6 addresses: 13168
Top 10 bandwidth usage (bytes/total in %):
20.2% 17.9% 16.8% 15.4% 3.4% 2.5% 2.4% 2.2% 2.0% 1.8%

Aggregated Flow Summary (using agurim)

[agurim byte plot] [agurim packets plot]

Packet Size Distribution (including MAC headers)

[packet size distribution]
detailed numbers

Protocol Breakdown 

     protocol		packets			bytes		bytes/pkt
------------------------------------------------------------------------
 total         86257694 (100.00%)      37704640360 (100.00%)    437.12
 ip            83783839 ( 97.13%)      35338897270 ( 93.73%)    421.79
  tcp          42939420 ( 49.78%)      31038100523 ( 82.32%)    722.83
   http        32785873 ( 38.01%)      25516264109 ( 67.67%)    778.27
   https        4548678 (  5.27%)       3477867745 (  9.22%)    764.59
   smtp           53924 (  0.06%)         16783633 (  0.04%)    311.25
   ftp            20332 (  0.02%)          1320985 (  0.00%)     64.97
   ssh           903065 (  1.05%)         89936741 (  0.24%)     99.59
   dns            12870 (  0.01%)          2382169 (  0.01%)    185.09
   bgp             2052 (  0.00%)           310747 (  0.00%)    151.44
   other        4612626 (  5.35%)       1933234394 (  5.13%)    419.12
  udp           1533838 (  1.78%)        519976411 (  1.38%)    339.00
   dns           580674 (  0.67%)        129117878 (  0.34%)    222.36
   other         953044 (  1.10%)        390754978 (  1.04%)    410.01
  icmp         36934334 ( 42.82%)       2296236514 (  6.09%)     62.17
  ipip              183 (  0.00%)            19062 (  0.00%)    104.16
  gre           1299171 (  1.51%)        946388210 (  2.51%)    728.46
  ipsec          147736 (  0.17%)        211527540 (  0.56%)   1431.79
  ip6            929155 (  1.08%)        326648750 (  0.87%)    351.55
  other               2 (  0.00%)              260 (  0.00%)    130.00
  frag            35193 (  0.04%)         50725144 (  0.13%)   1441.34
 ip6            2473855 (  2.87%)       2365743090 (  6.27%)    956.30
  tcp6          2353417 (  2.73%)       2338687226 (  6.20%)    993.74
   http         1515242 (  1.76%)       1520211232 (  4.03%)   1003.28
   https         718246 (  0.83%)        718181176 (  1.90%)    999.91
   smtp             656 (  0.00%)           484515 (  0.00%)    738.59
   ftp              283 (  0.00%)            25348 (  0.00%)     89.57
   ssh            20231 (  0.02%)         29141243 (  0.08%)   1440.43
   dns             3106 (  0.00%)           639414 (  0.00%)    205.86
   bgp              969 (  0.00%)           179509 (  0.00%)    185.25
   other          94684 (  0.11%)         69824789 (  0.19%)    737.45
  udp6            71475 (  0.08%)         20333499 (  0.05%)    284.48
   dns            65320 (  0.08%)         19582935 (  0.05%)    299.80
   other           6155 (  0.01%)           750564 (  0.00%)    121.94
  icmp6           48022 (  0.06%)          5872495 (  0.02%)    122.29
  ip                 82 (  0.00%)            11226 (  0.00%)    136.90
  pim6               31 (  0.00%)             4216 (  0.00%)    136.00
  other6            828 (  0.00%)           834428 (  0.00%)   1007.76


tcpdump file: 201410020900.dump.gz (1753.73 MB)