Traffic Trace Info
DumpFile: 201203201400.dump
FileSize: 2646.76MB
Id: 201203201400
StartTime: Tue Mar 20 14:00:00 2012
EndTime: Tue Mar 20 14:15:00 2012
TotalTime: 900.33 seconds
TotalCapSize: -2007.31MB CapLen: 96 bytes
# of packets: 36573267 (27251.64MB)
AvgRate: 253.89Mbps stddev:32.75M
IP flow (unique src/dst pair) Information
# of flows: 1847079 (avg. 19.80 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.9% 4.6% 4.5% 3.0% 1.9% 1.6% 1.5% 1.4% 1.4% 1.4%
IP address Information
# of IPv4 addresses: 1402290
Top 10 bandwidth usage (bytes/total in %):
23.7% 9.4% 6.8% 6.1% 6.1% 6.0% 4.6% 4.6% 4.2% 3.9%
# of IPv6 addresses: 5818
Top 10 bandwidth usage (bytes/total in %):
31.7% 13.7% 10.3% 10.1% 9.4% 7.8% 7.1% 6.9% 4.1% 3.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203201400.pktlen.png)
detailed numbers
[ 32- 63]: 5943461
[ 64- 127]: 9818722
[ 128- 255]: 1140287
[ 256- 511]: 957495
[ 512- 1023]: 1138985
[ 1024- 2047]: 17574317
Protocol Breakdown
![[protocol breakdown chart]](201203201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36573267 (100.00%) 28575411375 (100.00%) 781.32
ip 36351396 ( 99.39%) 28519320818 ( 99.80%) 784.55
tcp 26689979 ( 72.98%) 25189502584 ( 88.15%) 943.78
http(s) 14719408 ( 40.25%) 20304080025 ( 71.05%) 1379.41
http(c) 5802972 ( 15.87%) 680849110 ( 2.38%) 117.33
squid 1524023 ( 4.17%) 1912083954 ( 6.69%) 1254.63
smtp 39486 ( 0.11%) 7089370 ( 0.02%) 179.54
nntp 6 ( 0.00%) 374 ( 0.00%) 62.33
ftp 7564 ( 0.02%) 727076 ( 0.00%) 96.12
pop3 7589 ( 0.02%) 987261 ( 0.00%) 130.09
imap 2679 ( 0.01%) 522181 ( 0.00%) 194.92
telnet 41171 ( 0.11%) 3036124 ( 0.01%) 73.74
ssh 234698 ( 0.64%) 47857852 ( 0.17%) 203.91
dns 7624 ( 0.02%) 622177 ( 0.00%) 81.61
bgp 610 ( 0.00%) 104777 ( 0.00%) 171.77
napster 1031 ( 0.00%) 64800 ( 0.00%) 62.85
realaud 49 ( 0.00%) 3342 ( 0.00%) 68.20
rtsp 2 ( 0.00%) 120 ( 0.00%) 60.00
icecast 24751 ( 0.07%) 13420173 ( 0.05%) 542.21
hotline 74 ( 0.00%) 5437 ( 0.00%) 73.47
other 4276242 ( 11.69%) 2218048431 ( 7.76%) 518.69
udp 5201667 ( 14.22%) 1836865172 ( 6.43%) 353.13
dns 427209 ( 1.17%) 108439330 ( 0.38%) 253.83
realaud 14 ( 0.00%) 3679 ( 0.00%) 262.79
halflif 154 ( 0.00%) 28573 ( 0.00%) 185.54
starcra 107 ( 0.00%) 8963 ( 0.00%) 83.77
everque 973 ( 0.00%) 492458 ( 0.00%) 506.12
unreal 692 ( 0.00%) 42915 ( 0.00%) 62.02
quake 7 ( 0.00%) 649 ( 0.00%) 92.71
cuseeme 5 ( 0.00%) 608 ( 0.00%) 121.60
other 4560886 ( 12.47%) 1714532729 ( 6.00%) 375.92
icmp 1697357 ( 4.64%) 134433025 ( 0.47%) 79.20
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 6078 ( 0.02%) 1535588 ( 0.01%) 252.65
ip6 2740236 ( 7.49%) 1354281777 ( 4.74%) 494.22
other 15894 ( 0.04%) 2683402 ( 0.01%) 168.83
frag 671963 ( 1.84%) 511310554 ( 1.79%) 760.92
ip6 221871 ( 0.61%) 56090557 ( 0.20%) 252.81
tcp6 133491 ( 0.36%) 37552256 ( 0.13%) 281.31
http(s) 4581 ( 0.01%) 5196444 ( 0.02%) 1134.35
http(c) 45927 ( 0.13%) 4055544 ( 0.01%) 88.30
smtp 57 ( 0.00%) 16236 ( 0.00%) 284.84
ftp 43 ( 0.00%) 3666 ( 0.00%) 85.26
ssh 474 ( 0.00%) 273064 ( 0.00%) 576.08
dns 600 ( 0.00%) 79366 ( 0.00%) 132.28
bgp 93 ( 0.00%) 21514 ( 0.00%) 231.33
other 81716 ( 0.22%) 27906422 ( 0.10%) 341.50
udp6 51911 ( 0.14%) 12818507 ( 0.04%) 246.93
dns 49218 ( 0.13%) 12416416 ( 0.04%) 252.27
halflif 2 ( 0.00%) 201 ( 0.00%) 100.50
everque 1 ( 0.00%) 117 ( 0.00%) 117.00
quake 1 ( 0.00%) 110 ( 0.00%) 110.00
cuseeme 1 ( 0.00%) 119 ( 0.00%) 119.00
other 2688 ( 0.01%) 401544 ( 0.00%) 149.38
icmp6 35359 ( 0.10%) 4631035 ( 0.02%) 130.97
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 995 ( 0.00%) 1073131 ( 0.00%) 1078.52
tcpdump file: 201203201400.dump.gz (880.04 MB)