Traffic Trace Info
DumpFile: 201107201400.dump
FileSize: 3704.87MB
Id: 201107201400
StartTime: Wed Jul 20 14:00:01 2011
EndTime: Wed Jul 20 14:15:01 2011
TotalTime: 900.25 seconds
TotalCapSize: -1193.12MB CapLen: 96 bytes
# of packets: 52558628 (33870.53MB)
AvgRate: 343.23Mbps stddev:48.53M
IP flow (unique src/dst pair) Information
# of flows: 978257 (avg. 53.73 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.2% 5.1% 3.3% 3.2% 2.9% 1.4% 1.2% 1.2% 1.2% 1.1%
IP address Information
# of IPv4 addresses: 445619
Top 10 bandwidth usage (bytes/total in %):
19.0% 15.8% 8.8% 6.4% 5.3% 5.2% 5.2% 3.5% 3.4% 3.3%
# of IPv6 addresses: 4016
Top 10 bandwidth usage (bytes/total in %):
41.8% 23.5% 23.5% 20.2% 17.9% 17.1% 12.9% 12.0% 4.0% 4.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201107201400.pktlen.png)
detailed numbers
[ 32- 63]: 15842384
[ 64- 127]: 10639507
[ 128- 255]: 1507742
[ 256- 511]: 826069
[ 512- 1023]: 2072218
[ 1024- 2047]: 21670708
Protocol Breakdown
![[protocol breakdown chart]](201107201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 52558628 (100.00%) 35515824420 (100.00%) 675.74
ip 52174085 ( 99.27%) 35143934140 ( 98.95%) 673.59
tcp 47078223 ( 89.57%) 33195166633 ( 93.47%) 705.11
http(s) 18813212 ( 35.79%) 23977056719 ( 67.51%) 1274.48
http(c) 13976465 ( 26.59%) 4291393495 ( 12.08%) 307.04
squid 136249 ( 0.26%) 64673451 ( 0.18%) 474.67
smtp 379349 ( 0.72%) 252823104 ( 0.71%) 666.47
ftp 65742 ( 0.13%) 40968804 ( 0.12%) 623.18
pop3 38954 ( 0.07%) 24024645 ( 0.07%) 616.74
imap 31692 ( 0.06%) 24396303 ( 0.07%) 769.79
telnet 1557 ( 0.00%) 127399 ( 0.00%) 81.82
ssh 632650 ( 1.20%) 544703390 ( 1.53%) 860.99
dns 25315 ( 0.05%) 2321234 ( 0.01%) 91.69
bgp 532 ( 0.00%) 108602 ( 0.00%) 204.14
napster 1528 ( 0.00%) 98353 ( 0.00%) 64.37
realaud 70 ( 0.00%) 5075 ( 0.00%) 72.50
rtsp 7957 ( 0.02%) 8351268 ( 0.02%) 1049.55
icecast 9904 ( 0.02%) 996388 ( 0.00%) 100.60
hotline 88 ( 0.00%) 6023 ( 0.00%) 68.44
other 12956958 ( 24.65%) 3963112320 ( 11.16%) 305.87
udp 3925988 ( 7.47%) 1348398046 ( 3.80%) 343.45
dns 689498 ( 1.31%) 154667929 ( 0.44%) 224.32
realaud 93 ( 0.00%) 10304 ( 0.00%) 110.80
halflif 96 ( 0.00%) 8474 ( 0.00%) 88.27
starcra 39 ( 0.00%) 3764 ( 0.00%) 96.51
everque 3675 ( 0.01%) 431728 ( 0.00%) 117.48
unreal 95 ( 0.00%) 17369 ( 0.00%) 182.83
quake 1495 ( 0.00%) 125677 ( 0.00%) 84.06
cuseeme 3 ( 0.00%) 277 ( 0.00%) 92.33
other 3230850 ( 6.15%) 1193030418 ( 3.36%) 369.26
icmp 343451 ( 0.65%) 30919891 ( 0.09%) 90.03
ipip 170 ( 0.00%) 17704 ( 0.00%) 104.14
ipsec 852 ( 0.00%) 286376 ( 0.00%) 336.12
ip6 808777 ( 1.54%) 563566852 ( 1.59%) 696.81
other 16624 ( 0.03%) 5578638 ( 0.02%) 335.58
frag 632 ( 0.00%) 674478 ( 0.00%) 1067.21
ip6 384543 ( 0.73%) 371890280 ( 1.05%) 967.10
tcp6 235532 ( 0.45%) 250193825 ( 0.70%) 1062.25
http(s) 13504 ( 0.03%) 12320635 ( 0.03%) 912.37
http(c) 52074 ( 0.10%) 4522834 ( 0.01%) 86.85
squid 6 ( 0.00%) 508 ( 0.00%) 84.67
smtp 308 ( 0.00%) 43573 ( 0.00%) 141.47
ftp 17 ( 0.00%) 1605 ( 0.00%) 94.41
dns 284 ( 0.00%) 68326 ( 0.00%) 240.58
bgp 79 ( 0.00%) 11561 ( 0.00%) 146.34
other 169260 ( 0.32%) 233224783 ( 0.66%) 1377.91
udp6 126439 ( 0.24%) 115957200 ( 0.33%) 917.10
dns 41116 ( 0.08%) 13328496 ( 0.04%) 324.17
everque 4 ( 0.00%) 450 ( 0.00%) 112.50
quake 1 ( 0.00%) 107 ( 0.00%) 107.00
other 85318 ( 0.16%) 102628147 ( 0.29%) 1202.89
icmp6 18672 ( 0.04%) 2953809 ( 0.01%) 158.19
pim6 28 ( 0.00%) 3808 ( 0.00%) 136.00
other6 3872 ( 0.01%) 2781638 ( 0.01%) 718.40
tcpdump file: 201107201400.dump.gz (1247.69 MB)