Traffic Trace Info
DumpFile: 201208191400.dump
FileSize: 2457.14MB
Id: 201208191400
StartTime: Sun Aug 19 14:00:01 2012
EndTime: Sun Aug 19 14:15:01 2012
TotalTime: 900.13 seconds
TotalCapSize: 1898.92MB CapLen: 96 bytes
# of packets: 36582563 (27316.69MB)
AvgRate: 254.43Mbps stddev:67.57M
IP flow (unique src/dst pair) Information
# of flows: 2076854 (avg. 17.61 pkts/flow)
Top 10 big flow size (bytes/total in %):
8.0% 7.8% 2.4% 2.2% 1.4% 1.1% 1.0% 1.0% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 1611479
Top 10 bandwidth usage (bytes/total in %):
21.3% 15.9% 8.1% 7.9% 7.3% 6.7% 4.7% 4.7% 3.6% 3.0%
# of IPv6 addresses: 5510
Top 10 bandwidth usage (bytes/total in %):
20.3% 9.1% 7.8% 7.2% 6.6% 6.1% 5.3% 5.3% 4.5% 3.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201208191400.pktlen.png)
detailed numbers
[ 32- 63]: 4938151
[ 64- 127]: 5676385
[ 128- 255]: 1287942
[ 256- 511]: 685710
[ 512- 1023]: 8901848
[ 1024- 2047]: 15092527
Protocol Breakdown
![[protocol breakdown chart]](201208191400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36582563 (100.00%) 28643629273 (100.00%) 782.99
ip 36284037 ( 99.18%) 28431226407 ( 99.26%) 783.57
tcp 21251920 ( 58.09%) 21663453587 ( 75.63%) 1019.36
http(s) 10434608 ( 28.52%) 14236607531 ( 49.70%) 1364.36
http(c) 4298773 ( 11.75%) 698197766 ( 2.44%) 162.42
squid 31429 ( 0.09%) 22329820 ( 0.08%) 710.48
smtp 50251 ( 0.14%) 11605844 ( 0.04%) 230.96
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 180442 ( 0.49%) 156380277 ( 0.55%) 866.65
pop3 10575 ( 0.03%) 14266665 ( 0.05%) 1349.09
imap 5673 ( 0.02%) 7341653 ( 0.03%) 1294.14
telnet 7180 ( 0.02%) 549075 ( 0.00%) 76.47
ssh 319244 ( 0.87%) 49963343 ( 0.17%) 156.51
dns 1096 ( 0.00%) 204774 ( 0.00%) 186.84
bgp 534 ( 0.00%) 104468 ( 0.00%) 195.63
napster 20 ( 0.00%) 2347 ( 0.00%) 117.35
realaud 8 ( 0.00%) 852 ( 0.00%) 106.50
rtsp 1 ( 0.00%) 60 ( 0.00%) 60.00
icecast 599 ( 0.00%) 65277 ( 0.00%) 108.98
hotline 239 ( 0.00%) 15920 ( 0.00%) 66.61
other 5911247 ( 16.16%) 6465817855 ( 22.57%) 1093.82
udp 11782309 ( 32.21%) 5726730735 ( 19.99%) 486.04
dns 284137 ( 0.78%) 69372035 ( 0.24%) 244.15
rip 8737264 ( 23.88%) 4598761344 ( 16.06%) 526.34
realaud 7 ( 0.00%) 862 ( 0.00%) 123.14
halflif 32824 ( 0.09%) 5012559 ( 0.02%) 152.71
starcra 16 ( 0.00%) 2652 ( 0.00%) 165.75
everque 118 ( 0.00%) 26519 ( 0.00%) 224.74
unreal 17023 ( 0.05%) 1180841 ( 0.00%) 69.37
quake 15 ( 0.00%) 2071 ( 0.00%) 138.07
cuseeme 3 ( 0.00%) 307 ( 0.00%) 102.33
other 2596902 ( 7.10%) 1045355060 ( 3.65%) 402.54
icmp 1562914 ( 4.27%) 157395847 ( 0.55%) 100.71
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 1025 ( 0.00%) 372182 ( 0.00%) 363.10
ip6 1629764 ( 4.46%) 871594156 ( 3.04%) 534.80
pim 77 ( 0.00%) 4620 ( 0.00%) 60.00
other 55843 ( 0.15%) 11656010 ( 0.04%) 208.73
frag 244087 ( 0.67%) 189783439 ( 0.66%) 777.52
ip6 298526 ( 0.82%) 212402866 ( 0.74%) 711.51
tcp6 200365 ( 0.55%) 172210031 ( 0.60%) 859.48
http(s) 142385 ( 0.39%) 144484229 ( 0.50%) 1014.74
http(c) 32016 ( 0.09%) 3273158 ( 0.01%) 102.24
smtp 47 ( 0.00%) 6093 ( 0.00%) 129.64
ftp 147 ( 0.00%) 16070 ( 0.00%) 109.32
ssh 18 ( 0.00%) 1512 ( 0.00%) 84.00
dns 50 ( 0.00%) 17504 ( 0.00%) 350.08
bgp 101 ( 0.00%) 35724 ( 0.00%) 353.70
other 25601 ( 0.07%) 24375741 ( 0.09%) 952.14
udp6 72124 ( 0.20%) 35943710 ( 0.13%) 498.36
dns 36205 ( 0.10%) 10788585 ( 0.04%) 297.99
starcra 1 ( 0.00%) 106 ( 0.00%) 106.00
everque 2 ( 0.00%) 231 ( 0.00%) 115.50
quake 1 ( 0.00%) 105 ( 0.00%) 105.00
other 35915 ( 0.10%) 25154683 ( 0.09%) 700.39
icmp6 25226 ( 0.07%) 3585357 ( 0.01%) 142.13
ip6 85 ( 0.00%) 11580 ( 0.00%) 136.24
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 695 ( 0.00%) 647972 ( 0.00%) 932.33
tcpdump file: 201208191400.dump.gz (737.37 MB)