Traffic Trace Info
DumpFile: 201208161400.dump
FileSize: 3193.44MB
Id: 201208161400
StartTime: Thu Aug 16 14:00:01 2012
EndTime: Thu Aug 16 14:15:00 2012
TotalTime: 899.64 seconds
TotalCapSize: -1633.86MB CapLen: 96 bytes
# of packets: 47926200 (36065.96MB)
AvgRate: 336.36Mbps stddev:53.79M
IP flow (unique src/dst pair) Information
# of flows: 2203630 (avg. 21.75 pkts/flow)
Top 10 big flow size (bytes/total in %):
15.2% 7.7% 2.8% 1.9% 1.5% 1.4% 1.1% 1.1% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 1619735
Top 10 bandwidth usage (bytes/total in %):
17.5% 15.7% 15.7% 14.5% 8.0% 7.6% 6.6% 4.5% 4.5% 3.7%
# of IPv6 addresses: 8839
Top 10 bandwidth usage (bytes/total in %):
56.0% 50.0% 10.5% 4.4% 4.3% 2.8% 2.8% 2.3% 2.0% 1.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201208161400.pktlen.png)
detailed numbers
[ 32- 63]: 7953152
[ 64- 127]: 5857705
[ 128- 255]: 1408269
[ 256- 511]: 669314
[ 512- 1023]: 11939356
[ 1024- 2047]: 20098404
Protocol Breakdown
![[protocol breakdown chart]](201208161400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 47926200 (100.00%) 37817903174 (100.00%) 789.09
ip 47005816 ( 98.08%) 36950377380 ( 97.71%) 786.08
tcp 30157405 ( 62.92%) 29286629878 ( 77.44%) 971.13
http(s) 15781765 ( 32.93%) 21781456423 ( 57.60%) 1380.17
http(c) 6874285 ( 14.34%) 1048593089 ( 2.77%) 152.54
squid 75388 ( 0.16%) 21954486 ( 0.06%) 291.22
smtp 73488 ( 0.15%) 27369890 ( 0.07%) 372.44
ftp 15901 ( 0.03%) 3311398 ( 0.01%) 208.25
pop3 2171 ( 0.00%) 1059620 ( 0.00%) 488.08
imap 2091 ( 0.00%) 539065 ( 0.00%) 257.80
telnet 7313 ( 0.02%) 587138 ( 0.00%) 80.29
ssh 19582 ( 0.04%) 5427243 ( 0.01%) 277.15
dns 3885 ( 0.01%) 2088248 ( 0.01%) 537.52
bgp 550 ( 0.00%) 141194 ( 0.00%) 256.72
napster 37 ( 0.00%) 3851 ( 0.00%) 104.08
realaud 211 ( 0.00%) 14196 ( 0.00%) 67.28
icecast 15809 ( 0.03%) 12406442 ( 0.03%) 784.77
hotline 86 ( 0.00%) 5949 ( 0.00%) 69.17
other 7284842 ( 15.20%) 6381671586 ( 16.87%) 876.02
udp 14139237 ( 29.50%) 6906016886 ( 18.26%) 488.43
dns 621038 ( 1.30%) 155892462 ( 0.41%) 251.02
rip 11626730 ( 24.26%) 6137084696 ( 16.23%) 527.84
realaud 29 ( 0.00%) 2354 ( 0.00%) 81.17
halflif 127668 ( 0.27%) 28998529 ( 0.08%) 227.14
starcra 384 ( 0.00%) 24423 ( 0.00%) 63.60
everque 150 ( 0.00%) 35384 ( 0.00%) 235.89
unreal 4 ( 0.00%) 333 ( 0.00%) 83.25
quake 4 ( 0.00%) 560 ( 0.00%) 140.00
cuseeme 4 ( 0.00%) 642 ( 0.00%) 160.50
other 1763153 ( 3.68%) 583941027 ( 1.54%) 331.19
icmp 1586930 ( 3.31%) 160530521 ( 0.42%) 101.16
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 860 ( 0.00%) 262984 ( 0.00%) 305.80
ip6 1077070 ( 2.25%) 585353951 ( 1.55%) 543.47
pim 75 ( 0.00%) 4500 ( 0.00%) 60.00
other 44055 ( 0.09%) 11559500 ( 0.03%) 262.39
frag 44139 ( 0.09%) 51449275 ( 0.14%) 1165.62
ip6 920384 ( 1.92%) 867525794 ( 2.29%) 942.57
tcp6 835743 ( 1.74%) 845860239 ( 2.24%) 1012.11
http(s) 589174 ( 1.23%) 756315985 ( 2.00%) 1283.69
http(c) 166803 ( 0.35%) 15880865 ( 0.04%) 95.21
squid 6 ( 0.00%) 1088 ( 0.00%) 181.33
smtp 243 ( 0.00%) 112700 ( 0.00%) 463.79
ftp 185 ( 0.00%) 19524 ( 0.00%) 105.54
ssh 5601 ( 0.01%) 1503626 ( 0.00%) 268.46
dns 59 ( 0.00%) 18685 ( 0.00%) 316.69
bgp 90 ( 0.00%) 26986 ( 0.00%) 299.84
other 73582 ( 0.15%) 71980780 ( 0.19%) 978.24
udp6 56628 ( 0.12%) 17017835 ( 0.04%) 300.52
dns 53261 ( 0.11%) 16467706 ( 0.04%) 309.19
halflif 1 ( 0.00%) 104 ( 0.00%) 104.00
everque 1 ( 0.00%) 90 ( 0.00%) 90.00
quake 7 ( 0.00%) 679 ( 0.00%) 97.00
other 3358 ( 0.01%) 549256 ( 0.00%) 163.57
icmp6 26989 ( 0.06%) 3741227 ( 0.01%) 138.62
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 909 ( 0.00%) 890865 ( 0.00%) 980.05
tcpdump file: 201208161400.dump.gz (946.33 MB)