Traffic Trace Info
DumpFile: 201208281400.dump
FileSize: 3497.16MB
Id: 201208281400
StartTime: Tue Aug 28 14:00:01 2012
EndTime: Tue Aug 28 14:15:01 2012
TotalTime: 899.61 seconds
TotalCapSize: -1421.22MB CapLen: 96 bytes
# of packets: 53894724 (33488.21MB)
AvgRate: 312.24Mbps stddev:60.68M
IP flow (unique src/dst pair) Information
# of flows: 1947152 (avg. 27.68 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.3% 2.3% 1.5% 1.5% 1.5% 1.5% 1.2% 1.2% 1.2% 1.2%
IP address Information
# of IPv4 addresses: 1513451
Top 10 bandwidth usage (bytes/total in %):
19.7% 11.9% 11.9% 6.0% 5.5% 4.2% 4.1% 3.9% 3.8% 3.6%
# of IPv6 addresses: 7162
Top 10 bandwidth usage (bytes/total in %):
25.5% 16.9% 10.7% 6.6% 6.3% 4.7% 4.6% 4.4% 4.2% 3.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201208281400.pktlen.png)
detailed numbers
[ 32- 63]: 6356463
[ 64- 127]: 9450142
[ 128- 255]: 2704391
[ 256- 511]: 706843
[ 512- 1023]: 19390824
[ 1024- 2047]: 15286061
Protocol Breakdown
![[protocol breakdown chart]](201208281400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 53894724 (100.00%) 35114928584 (100.00%) 651.55
ip 53095928 ( 98.52%) 34386832539 ( 97.93%) 647.64
tcp 25475338 ( 47.27%) 20625270558 ( 58.74%) 809.62
http(s) 12023655 ( 22.31%) 15282958533 ( 43.52%) 1271.07
http(c) 5911904 ( 10.97%) 1024481346 ( 2.92%) 173.29
squid 41524 ( 0.08%) 17938529 ( 0.05%) 432.00
smtp 77720 ( 0.14%) 27713772 ( 0.08%) 356.58
ftp 10042 ( 0.02%) 1346524 ( 0.00%) 134.09
pop3 7158 ( 0.01%) 3567530 ( 0.01%) 498.40
imap 12794 ( 0.02%) 16241977 ( 0.05%) 1269.50
telnet 9168 ( 0.02%) 695136 ( 0.00%) 75.82
ssh 2021037 ( 3.75%) 322194449 ( 0.92%) 159.42
dns 1643 ( 0.00%) 242837 ( 0.00%) 147.80
bgp 554 ( 0.00%) 119645 ( 0.00%) 215.97
napster 37 ( 0.00%) 3201 ( 0.00%) 86.51
realaud 447 ( 0.00%) 33667 ( 0.00%) 75.32
rtsp 13240 ( 0.02%) 16560150 ( 0.05%) 1250.77
icecast 19533 ( 0.04%) 13598313 ( 0.04%) 696.17
hotline 52 ( 0.00%) 3991 ( 0.00%) 76.75
other 5324830 ( 9.88%) 3897570958 ( 11.10%) 731.96
udp 24653792 ( 45.74%) 12888864483 ( 36.70%) 522.79
dns 421414 ( 0.78%) 108491335 ( 0.31%) 257.45
rip 20593487 ( 38.21%) 10428897982 ( 29.70%) 506.42
realaud 68 ( 0.00%) 6333 ( 0.00%) 93.13
halflif 161 ( 0.00%) 26978 ( 0.00%) 167.57
starcra 15 ( 0.00%) 1644 ( 0.00%) 109.60
everque 179 ( 0.00%) 41970 ( 0.00%) 234.47
unreal 10 ( 0.00%) 1333 ( 0.00%) 133.30
quake 16 ( 0.00%) 1177 ( 0.00%) 73.56
cuseeme 7 ( 0.00%) 941 ( 0.00%) 134.43
other 3638334 ( 6.75%) 2351314531 ( 6.70%) 646.26
icmp 1645752 ( 3.05%) 161113901 ( 0.46%) 97.90
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 12644 ( 0.02%) 4666376 ( 0.01%) 369.06
ip6 1241866 ( 2.30%) 690102069 ( 1.97%) 555.70
pim 85 ( 0.00%) 5100 ( 0.00%) 60.00
other 66267 ( 0.12%) 16790892 ( 0.05%) 253.38
frag 16298 ( 0.03%) 17910115 ( 0.05%) 1098.91
ip6 798796 ( 1.48%) 728096045 ( 2.07%) 911.49
tcp6 705201 ( 1.31%) 695472524 ( 1.98%) 986.20
http(s) 552546 ( 1.03%) 662016838 ( 1.89%) 1198.12
http(c) 131065 ( 0.24%) 13735236 ( 0.04%) 104.80
smtp 422 ( 0.00%) 396844 ( 0.00%) 940.39
ftp 355 ( 0.00%) 35984 ( 0.00%) 101.36
ssh 12 ( 0.00%) 1008 ( 0.00%) 84.00
dns 63 ( 0.00%) 21935 ( 0.00%) 348.17
bgp 97 ( 0.00%) 31092 ( 0.00%) 320.54
other 20641 ( 0.04%) 19233587 ( 0.05%) 931.81
udp6 75218 ( 0.14%) 28883731 ( 0.08%) 384.00
dns 56326 ( 0.10%) 16598123 ( 0.05%) 294.68
halflif 1 ( 0.00%) 116 ( 0.00%) 116.00
everque 1 ( 0.00%) 110 ( 0.00%) 110.00
quake 3 ( 0.00%) 333 ( 0.00%) 111.00
other 18887 ( 0.04%) 12285049 ( 0.03%) 650.45
icmp6 17282 ( 0.03%) 2710636 ( 0.01%) 156.85
ip6 83 ( 0.00%) 11294 ( 0.00%) 136.07
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 981 ( 0.00%) 1013644 ( 0.00%) 1033.28
tcpdump file: 201208281400.dump.gz (1072.52 MB)