Traffic Trace Info
DumpFile: 201108031400.dump
FileSize: 2631.07MB
Id: 201108031400
StartTime: Wed Aug 3 14:00:00 2011
EndTime: Wed Aug 3 14:15:00 2011
TotalTime: 900.42 seconds
TotalCapSize: -2026.87MB CapLen: 96 bytes
# of packets: 36826703 (27936.00MB)
AvgRate: 260.22Mbps stddev:58.80M
IP flow (unique src/dst pair) Information
# of flows: 1129811 (avg. 32.60 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.8% 3.7% 1.7% 1.5% 1.2% 1.2% 1.1% 1.0% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 590002
Top 10 bandwidth usage (bytes/total in %):
17.1% 10.1% 4.9% 4.8% 4.3% 4.1% 3.9% 3.4% 3.3% 3.1%
# of IPv6 addresses: 4046
Top 10 bandwidth usage (bytes/total in %):
43.9% 33.3% 21.5% 12.5% 9.0% 5.9% 4.0% 3.7% 3.7% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201108031400.pktlen.png)
detailed numbers
[ 32- 63]: 7177898
[ 64- 127]: 7877546
[ 128- 255]: 1583021
[ 256- 511]: 869050
[ 512- 1023]: 1016021
[ 1024- 2047]: 18303167
Protocol Breakdown
![[protocol breakdown chart]](201108031400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36826703 (100.00%) 29293017259 (100.00%) 795.43
ip 36576168 ( 99.32%) 29130253523 ( 99.44%) 796.43
tcp 30899574 ( 83.91%) 26069134015 ( 88.99%) 843.67
http(s) 14611133 ( 39.68%) 19859476056 ( 67.80%) 1359.20
http(c) 7890897 ( 21.43%) 2037366189 ( 6.96%) 258.19
squid 129754 ( 0.35%) 109185175 ( 0.37%) 841.48
smtp 194066 ( 0.53%) 87498227 ( 0.30%) 450.87
ftp 58139 ( 0.16%) 38672722 ( 0.13%) 665.18
pop3 17435 ( 0.05%) 2808976 ( 0.01%) 161.11
imap 5673 ( 0.02%) 2663560 ( 0.01%) 469.52
telnet 1576 ( 0.00%) 291656 ( 0.00%) 185.06
ssh 146665 ( 0.40%) 22447015 ( 0.08%) 153.05
dns 28470 ( 0.08%) 2268288 ( 0.01%) 79.67
bgp 606 ( 0.00%) 122631 ( 0.00%) 202.36
napster 528 ( 0.00%) 40579 ( 0.00%) 76.85
realaud 60 ( 0.00%) 11237 ( 0.00%) 187.28
rtsp 8733 ( 0.02%) 10430573 ( 0.04%) 1194.39
icecast 2153 ( 0.01%) 171340 ( 0.00%) 79.58
hotline 21 ( 0.00%) 1330 ( 0.00%) 63.33
other 7803662 ( 21.19%) 3895678281 ( 13.30%) 499.21
udp 4280865 ( 11.62%) 2035859741 ( 6.95%) 475.57
dns 692188 ( 1.88%) 169662559 ( 0.58%) 245.11
realaud 78 ( 0.00%) 16009 ( 0.00%) 205.24
halflif 265 ( 0.00%) 19548 ( 0.00%) 73.77
starcra 23 ( 0.00%) 2630 ( 0.00%) 114.35
everque 504 ( 0.00%) 75245 ( 0.00%) 149.30
unreal 29 ( 0.00%) 4265 ( 0.00%) 147.07
quake 1107 ( 0.00%) 95920 ( 0.00%) 86.65
cuseeme 6 ( 0.00%) 520 ( 0.00%) 86.67
other 3586575 ( 9.74%) 1865923897 ( 6.37%) 520.25
icmp 394507 ( 1.07%) 62325786 ( 0.21%) 157.98
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ip6 983178 ( 2.67%) 956857347 ( 3.27%) 973.23
other 17859 ( 0.05%) 6057364 ( 0.02%) 339.18
frag 993 ( 0.00%) 1177147 ( 0.00%) 1185.45
ip6 250535 ( 0.68%) 162763736 ( 0.56%) 649.66
tcp6 173822 ( 0.47%) 141860078 ( 0.48%) 816.12
http(s) 20448 ( 0.06%) 27650381 ( 0.09%) 1352.23
http(c) 49715 ( 0.13%) 4406486 ( 0.02%) 88.63
squid 32 ( 0.00%) 2712 ( 0.00%) 84.75
smtp 203 ( 0.00%) 106086 ( 0.00%) 522.59
ftp 105 ( 0.00%) 9792 ( 0.00%) 93.26
dns 478 ( 0.00%) 101546 ( 0.00%) 212.44
bgp 91 ( 0.00%) 15222 ( 0.00%) 167.27
other 102750 ( 0.28%) 109567853 ( 0.37%) 1066.35
udp6 48168 ( 0.13%) 13418780 ( 0.05%) 278.58
dns 43988 ( 0.12%) 12875777 ( 0.04%) 292.71
everque 1 ( 0.00%) 111 ( 0.00%) 111.00
quake 2 ( 0.00%) 210 ( 0.00%) 105.00
other 4177 ( 0.01%) 542682 ( 0.00%) 129.92
icmp6 23142 ( 0.06%) 3601512 ( 0.01%) 155.63
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 5373 ( 0.01%) 3879286 ( 0.01%) 722.00
tcpdump file: 201108031400.dump.gz (869.51 MB)