Traffic Trace Info
DumpFile: 201203161400.dump
FileSize: 2914.68MB
Id: 201203161400
StartTime: Fri Mar 16 14:00:00 2012
EndTime: Fri Mar 16 14:15:01 2012
TotalTime: 900.43 seconds
TotalCapSize: -1799.43MB CapLen: 96 bytes
# of packets: 40507919 (28994.22MB)
AvgRate: 270.14Mbps stddev:50.99M
IP flow (unique src/dst pair) Information
# of flows: 1038455 (avg. 39.01 pkts/flow)
Top 10 big flow size (bytes/total in %):
8.1% 2.0% 1.3% 1.3% 1.2% 1.1% 0.9% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 575853
Top 10 bandwidth usage (bytes/total in %):
16.2% 11.3% 8.4% 7.6% 4.5% 4.2% 3.7% 3.1% 2.9% 2.9%
# of IPv6 addresses: 5820
Top 10 bandwidth usage (bytes/total in %):
66.3% 66.3% 10.6% 6.0% 4.2% 4.2% 4.1% 3.4% 2.3% 2.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203161400.pktlen.png)
detailed numbers
[ 32- 63]: 7962077
[ 64- 127]: 10294335
[ 128- 255]: 1519763
[ 256- 511]: 1012328
[ 512- 1023]: 933537
[ 1024- 2047]: 18785879
Protocol Breakdown
![[protocol breakdown chart]](201203161400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 40507919 (100.00%) 30402643749 (100.00%) 750.54
ip 39958198 ( 98.64%) 29822367742 ( 98.09%) 746.34
tcp 31395510 ( 77.50%) 26749843409 ( 87.99%) 852.03
http(s) 14712956 ( 36.32%) 19919763026 ( 65.52%) 1353.89
http(c) 8309104 ( 20.51%) 1513709605 ( 4.98%) 182.17
squid 648622 ( 1.60%) 689002385 ( 2.27%) 1062.26
smtp 59473 ( 0.15%) 11338290 ( 0.04%) 190.65
ftp 9542 ( 0.02%) 813603 ( 0.00%) 85.27
pop3 8514 ( 0.02%) 4815392 ( 0.02%) 565.59
imap 1456 ( 0.00%) 142227 ( 0.00%) 97.68
telnet 110 ( 0.00%) 6890 ( 0.00%) 62.64
ssh 697505 ( 1.72%) 442299782 ( 1.45%) 634.12
dns 11881 ( 0.03%) 2923163 ( 0.01%) 246.04
bgp 644 ( 0.00%) 115932 ( 0.00%) 180.02
napster 83 ( 0.00%) 20621 ( 0.00%) 248.45
realaud 141 ( 0.00%) 17073 ( 0.00%) 121.09
rtsp 12842 ( 0.03%) 16167468 ( 0.05%) 1258.95
icecast 39280 ( 0.10%) 29479691 ( 0.10%) 750.50
hotline 41 ( 0.00%) 3771 ( 0.00%) 91.98
other 6883313 ( 16.99%) 4119224310 ( 13.55%) 598.44
udp 5185886 ( 12.80%) 1873678236 ( 6.16%) 361.30
dns 609943 ( 1.51%) 137800974 ( 0.45%) 225.92
realaud 6 ( 0.00%) 620 ( 0.00%) 103.33
halflif 91 ( 0.00%) 14826 ( 0.00%) 162.92
starcra 51 ( 0.00%) 4599 ( 0.00%) 90.18
everque 6343 ( 0.02%) 6085904 ( 0.02%) 959.47
unreal 8 ( 0.00%) 1397 ( 0.00%) 174.62
quake 11 ( 0.00%) 897 ( 0.00%) 81.55
cuseeme 19 ( 0.00%) 1390 ( 0.00%) 73.16
other 4545604 ( 11.22%) 1728240111 ( 5.68%) 380.20
icmp 551303 ( 1.36%) 67954044 ( 0.22%) 123.26
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 5289 ( 0.01%) 776934 ( 0.00%) 146.90
ip6 2805774 ( 6.93%) 1127879305 ( 3.71%) 401.99
other 14251 ( 0.04%) 2216544 ( 0.01%) 155.54
frag 151019 ( 0.37%) 115184598 ( 0.38%) 762.72
ip6 549721 ( 1.36%) 580276007 ( 1.91%) 1055.58
tcp6 421489 ( 1.04%) 527948461 ( 1.74%) 1252.58
http(s) 273925 ( 0.68%) 410316811 ( 1.35%) 1497.92
http(c) 29763 ( 0.07%) 2769150 ( 0.01%) 93.04
squid 582 ( 0.00%) 486523 ( 0.00%) 835.95
smtp 98 ( 0.00%) 59095 ( 0.00%) 603.01
ftp 65 ( 0.00%) 7651 ( 0.00%) 117.71
ssh 15 ( 0.00%) 1110 ( 0.00%) 74.00
dns 366 ( 0.00%) 66575 ( 0.00%) 181.90
bgp 101 ( 0.00%) 23793 ( 0.00%) 235.57
other 116574 ( 0.29%) 114217753 ( 0.38%) 979.79
udp6 94374 ( 0.23%) 46377986 ( 0.15%) 491.43
dns 66904 ( 0.17%) 18524152 ( 0.06%) 276.88
realaud 3 ( 0.00%) 325 ( 0.00%) 108.33
halflif 2 ( 0.00%) 220 ( 0.00%) 110.00
everque 2 ( 0.00%) 212 ( 0.00%) 106.00
unreal 2 ( 0.00%) 219 ( 0.00%) 109.50
other 27461 ( 0.07%) 27852858 ( 0.09%) 1014.27
icmp6 32013 ( 0.08%) 4309643 ( 0.01%) 134.62
ip6 85 ( 0.00%) 11580 ( 0.00%) 136.24
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 1729 ( 0.00%) 1624121 ( 0.01%) 939.34
tcpdump file: 201203161400.dump.gz (992.08 MB)