Traffic Trace Info
DumpFile: 201203281400.dump
FileSize: 2618.47MB
Id: 201203281400
StartTime: Wed Mar 28 14:00:00 2012
EndTime: Wed Mar 28 14:15:00 2012
TotalTime: 900.43 seconds
TotalCapSize: -2040.51MB CapLen: 96 bytes
# of packets: 36894761 (28124.17MB)
AvgRate: 261.92Mbps stddev:43.50M
IP flow (unique src/dst pair) Information
# of flows: 1782401 (avg. 20.70 pkts/flow)
Top 10 big flow size (bytes/total in %):
7.2% 3.8% 2.7% 2.3% 1.9% 1.7% 1.5% 1.4% 1.2% 1.2%
IP address Information
# of IPv4 addresses: 1380384
Top 10 bandwidth usage (bytes/total in %):
20.2% 10.5% 9.1% 7.5% 4.0% 4.0% 3.9% 3.9% 3.9% 3.8%
# of IPv6 addresses: 6969
Top 10 bandwidth usage (bytes/total in %):
43.1% 41.9% 41.7% 39.1% 5.4% 5.4% 2.2% 1.2% 0.9% 0.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201203281400.pktlen.png)
detailed numbers
[ 32- 63]: 7690483
[ 64- 127]: 7966368
[ 128- 255]: 1043642
[ 256- 511]: 726160
[ 512- 1023]: 981080
[ 1024- 2047]: 18487028
Protocol Breakdown
![[protocol breakdown chart]](201203281400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36894761 (100.00%) 29490324820 (100.00%) 799.31
ip 36472902 ( 98.86%) 29090316103 ( 98.64%) 797.59
tcp 28089079 ( 76.13%) 25096013472 ( 85.10%) 893.44
http(s) 14382494 ( 38.98%) 19940587105 ( 67.62%) 1386.45
http(c) 7434879 ( 20.15%) 802251575 ( 2.72%) 107.90
squid 1111501 ( 3.01%) 1147544446 ( 3.89%) 1032.43
smtp 48804 ( 0.13%) 10260354 ( 0.03%) 210.24
ftp 9770 ( 0.03%) 932372 ( 0.00%) 95.43
pop3 5204 ( 0.01%) 1974001 ( 0.01%) 379.32
imap 1950 ( 0.01%) 411178 ( 0.00%) 210.86
telnet 2377 ( 0.01%) 171992 ( 0.00%) 72.36
ssh 64900 ( 0.18%) 8106948 ( 0.03%) 124.91
dns 3710 ( 0.01%) 367867 ( 0.00%) 99.16
bgp 660 ( 0.00%) 135078 ( 0.00%) 204.66
napster 104 ( 0.00%) 7643 ( 0.00%) 73.49
realaud 34 ( 0.00%) 2508 ( 0.00%) 73.76
rtsp 8926 ( 0.02%) 11634756 ( 0.04%) 1303.47
icecast 1024 ( 0.00%) 506169 ( 0.00%) 494.31
hotline 21 ( 0.00%) 1360 ( 0.00%) 64.76
other 5012721 ( 13.59%) 3171118120 ( 10.75%) 632.61
udp 5102995 ( 13.83%) 2649543591 ( 8.98%) 519.21
dns 565177 ( 1.53%) 138984718 ( 0.47%) 245.91
rip 2 ( 0.00%) 192 ( 0.00%) 96.00
realaud 7 ( 0.00%) 1216 ( 0.00%) 173.71
halflif 56 ( 0.00%) 8325 ( 0.00%) 148.66
starcra 27 ( 0.00%) 1962 ( 0.00%) 72.67
everque 1313 ( 0.00%) 471296 ( 0.00%) 358.95
unreal 29 ( 0.00%) 3555 ( 0.00%) 122.59
quake 12 ( 0.00%) 1021 ( 0.00%) 85.08
cuseeme 2 ( 0.00%) 185 ( 0.00%) 92.50
other 4180558 ( 11.33%) 2487254675 ( 8.43%) 594.96
icmp 1622474 ( 4.40%) 127436882 ( 0.43%) 78.54
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 10437 ( 0.03%) 3014894 ( 0.01%) 288.87
ip6 1625696 ( 4.41%) 1211004974 ( 4.11%) 744.91
pim 320 ( 0.00%) 19200 ( 0.00%) 60.00
other 21717 ( 0.06%) 3263930 ( 0.01%) 150.29
frag 757812 ( 2.05%) 573554230 ( 1.94%) 756.86
ip6 421859 ( 1.14%) 400008717 ( 1.36%) 948.20
tcp6 317054 ( 0.86%) 375701457 ( 1.27%) 1184.98
http(s) 138942 ( 0.38%) 201258460 ( 0.68%) 1448.51
http(c) 41009 ( 0.11%) 3537669 ( 0.01%) 86.27
squid 3708 ( 0.01%) 2732297 ( 0.01%) 736.87
smtp 563 ( 0.00%) 201416 ( 0.00%) 357.75
ftp 17 ( 0.00%) 1605 ( 0.00%) 94.41
dns 609 ( 0.00%) 85643 ( 0.00%) 140.63
bgp 97 ( 0.00%) 19517 ( 0.00%) 201.21
other 132109 ( 0.36%) 167864850 ( 0.57%) 1270.65
udp6 68464 ( 0.19%) 18977042 ( 0.06%) 277.18
dns 66239 ( 0.18%) 18636779 ( 0.06%) 281.36
realaud 1 ( 0.00%) 107 ( 0.00%) 107.00
everque 3 ( 0.00%) 381 ( 0.00%) 127.00
quake 1 ( 0.00%) 105 ( 0.00%) 105.00
other 2220 ( 0.01%) 339670 ( 0.00%) 153.00
icmp6 35656 ( 0.10%) 4767728 ( 0.02%) 133.71
ip6 83 ( 0.00%) 11294 ( 0.00%) 136.07
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 571 ( 0.00%) 546980 ( 0.00%) 957.93
tcpdump file: 201203281400.dump.gz (829.47 MB)