Traffic Trace Info
DumpFile: 201201241400.dump
FileSize: 2631.59MB
Id: 201201241400
StartTime: Tue Jan 24 14:00:00 2012
EndTime: Tue Jan 24 14:15:00 2012
TotalTime: 899.69 seconds
TotalCapSize: -2030.63MB CapLen: 96 bytes
# of packets: 37107238 (22143.15MB)
AvgRate: 206.46Mbps stddev:41.59M
IP flow (unique src/dst pair) Information
# of flows: 1976343 (avg. 18.78 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.0% 2.3% 1.7% 1.1% 0.8% 0.8% 0.7% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 1474839
Top 10 bandwidth usage (bytes/total in %):
18.8% 10.0% 5.2% 5.1% 4.6% 3.2% 3.1% 2.7% 2.4% 2.2%
# of IPv6 addresses: 4867
Top 10 bandwidth usage (bytes/total in %):
28.3% 28.3% 26.7% 24.9% 13.8% 13.2% 9.3% 6.1% 5.7% 4.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201201241400.pktlen.png)
detailed numbers
[ 32- 63]: 8683937
[ 64- 127]: 10995983
[ 128- 255]: 1597351
[ 256- 511]: 798175
[ 512- 1023]: 864103
[ 1024- 2047]: 14167689
Protocol Breakdown
![[protocol breakdown chart]](201201241400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37107238 (100.00%) 23218780836 (100.00%) 625.72
ip 36613109 ( 98.67%) 22860734452 ( 98.46%) 624.39
tcp 28885969 ( 77.84%) 19353426321 ( 83.35%) 669.99
http(s) 12299302 ( 33.15%) 16256718882 ( 70.02%) 1321.76
http(c) 10912555 ( 29.41%) 1460027486 ( 6.29%) 133.79
squid 64320 ( 0.17%) 42755037 ( 0.18%) 664.72
smtp 69768 ( 0.19%) 31978305 ( 0.14%) 458.35
ftp 16044 ( 0.04%) 1533001 ( 0.01%) 95.55
pop3 2945 ( 0.01%) 683144 ( 0.00%) 231.97
imap 3428 ( 0.01%) 386090 ( 0.00%) 112.63
telnet 21411 ( 0.06%) 1579956 ( 0.01%) 73.79
ssh 152202 ( 0.41%) 178255688 ( 0.77%) 1171.18
dns 18700 ( 0.05%) 3592631 ( 0.02%) 192.12
bgp 679 ( 0.00%) 142312 ( 0.00%) 209.59
napster 242 ( 0.00%) 16349 ( 0.00%) 67.56
realaud 185 ( 0.00%) 19388 ( 0.00%) 104.80
rtsp 19830 ( 0.05%) 26008775 ( 0.11%) 1311.59
icecast 65597 ( 0.18%) 56976251 ( 0.25%) 868.58
hotline 18 ( 0.00%) 1116 ( 0.00%) 62.00
other 5238743 ( 14.12%) 1292751910 ( 5.57%) 246.77
udp 5268801 ( 14.20%) 2795269512 ( 12.04%) 530.53
dns 474698 ( 1.28%) 102532551 ( 0.44%) 216.00
realaud 21 ( 0.00%) 1886 ( 0.00%) 89.81
halflif 564 ( 0.00%) 37255 ( 0.00%) 66.05
starcra 29 ( 0.00%) 3729 ( 0.00%) 128.59
everque 537 ( 0.00%) 145182 ( 0.00%) 270.36
unreal 30 ( 0.00%) 5949 ( 0.00%) 198.30
quake 26 ( 0.00%) 2624 ( 0.00%) 100.92
cuseeme 8 ( 0.00%) 879 ( 0.00%) 109.88
other 4792664 ( 12.92%) 2692382947 ( 11.60%) 561.77
icmp 1583023 ( 4.27%) 159068131 ( 0.69%) 100.48
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 9456 ( 0.03%) 2623664 ( 0.01%) 277.46
ip6 857952 ( 2.31%) 547552564 ( 2.36%) 638.21
other 7724 ( 0.02%) 2775100 ( 0.01%) 359.28
frag 2659 ( 0.01%) 2708955 ( 0.01%) 1018.79
ip6 494129 ( 1.33%) 358046384 ( 1.54%) 724.60
tcp6 411112 ( 1.11%) 338177765 ( 1.46%) 822.59
http(s) 75012 ( 0.20%) 100129538 ( 0.43%) 1334.85
http(c) 138327 ( 0.37%) 12099945 ( 0.05%) 87.47
smtp 1155 ( 0.00%) 684687 ( 0.00%) 592.80
ftp 26 ( 0.00%) 2313 ( 0.00%) 88.96
dns 303 ( 0.00%) 61478 ( 0.00%) 202.90
bgp 92 ( 0.00%) 17737 ( 0.00%) 192.79
other 196197 ( 0.53%) 225182067 ( 0.97%) 1147.73
udp6 61762 ( 0.17%) 15987491 ( 0.07%) 258.86
dns 58100 ( 0.16%) 15539234 ( 0.07%) 267.46
everque 2 ( 0.00%) 216 ( 0.00%) 108.00
other 3660 ( 0.01%) 448041 ( 0.00%) 122.42
icmp6 20387 ( 0.05%) 3125820 ( 0.01%) 153.32
ip6 82 ( 0.00%) 11176 ( 0.00%) 136.29
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 755 ( 0.00%) 739916 ( 0.00%) 980.02
tcpdump file: 201201241400.dump.gz (874.79 MB)