Traffic Trace Info
DumpFile: 201209021400.dump
FileSize: 3033.92MB
Id: 201209021400
StartTime: Sun Sep 2 14:00:00 2012
EndTime: Sun Sep 2 14:15:00 2012
TotalTime: 899.89 seconds
TotalCapSize: -1787.33MB CapLen: 96 bytes
# of packets: 47529878 (29976.45MB)
AvgRate: 279.54Mbps stddev:58.63M
IP flow (unique src/dst pair) Information
# of flows: 1617440 (avg. 29.39 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.8% 2.8% 2.5% 2.5% 2.3% 2.0% 1.7% 1.7% 1.7% 1.5%
IP address Information
# of IPv4 addresses: 1341352
Top 10 bandwidth usage (bytes/total in %):
18.0% 12.3% 12.3% 7.7% 7.0% 6.3% 5.5% 4.3% 3.4% 2.9%
# of IPv6 addresses: 5570
Top 10 bandwidth usage (bytes/total in %):
16.5% 12.4% 8.4% 8.4% 8.2% 8.2% 7.1% 6.8% 5.7% 5.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201209021400.pktlen.png)
detailed numbers
[ 32- 63]: 4956902
[ 64- 127]: 7053630
[ 128- 255]: 2318405
[ 256- 511]: 725420
[ 512- 1023]: 19560008
[ 1024- 2047]: 12915513
Protocol Breakdown
![[protocol breakdown chart]](201209021400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 47529878 (100.00%) 31432580857 (100.00%) 661.32
ip 47168909 ( 99.24%) 31114374576 ( 98.99%) 659.64
tcp 20601785 ( 43.34%) 18333032596 ( 58.32%) 889.88
http(s) 10512127 ( 22.12%) 13473687708 ( 42.87%) 1281.73
http(c) 5465354 ( 11.50%) 1697260402 ( 5.40%) 310.55
squid 64766 ( 0.14%) 55584381 ( 0.18%) 858.23
smtp 46119 ( 0.10%) 8931007 ( 0.03%) 193.65
nntp 6 ( 0.00%) 366 ( 0.00%) 61.00
ftp 8649 ( 0.02%) 2241681 ( 0.01%) 259.18
pop3 1029 ( 0.00%) 233008 ( 0.00%) 226.44
imap 2908 ( 0.01%) 921301 ( 0.00%) 316.82
telnet 7255 ( 0.02%) 560058 ( 0.00%) 77.20
ssh 149580 ( 0.31%) 24815483 ( 0.08%) 165.90
dns 3719 ( 0.01%) 2089036 ( 0.01%) 561.72
bgp 544 ( 0.00%) 117475 ( 0.00%) 215.95
napster 32 ( 0.00%) 2809 ( 0.00%) 87.78
realaud 124 ( 0.00%) 13381 ( 0.00%) 107.91
rtsp 376 ( 0.00%) 111991 ( 0.00%) 297.85
icecast 9653 ( 0.02%) 5997558 ( 0.02%) 621.32
hotline 6 ( 0.00%) 414 ( 0.00%) 69.00
other 4329538 ( 9.11%) 3060464537 ( 9.74%) 706.88
udp 24039690 ( 50.58%) 11981958903 ( 38.12%) 498.42
dns 341587 ( 0.72%) 72207962 ( 0.23%) 211.39
rip 19815474 ( 41.69%) 10066101324 ( 32.02%) 507.99
realaud 5 ( 0.00%) 410 ( 0.00%) 82.00
halflif 162 ( 0.00%) 23267 ( 0.00%) 143.62
starcra 34 ( 0.00%) 4837 ( 0.00%) 142.26
everque 185 ( 0.00%) 25637 ( 0.00%) 138.58
unreal 11 ( 0.00%) 2052 ( 0.00%) 186.55
quake 15 ( 0.00%) 2101 ( 0.00%) 140.07
cuseeme 5 ( 0.00%) 419 ( 0.00%) 83.80
other 3882128 ( 8.17%) 1843550043 ( 5.87%) 474.88
icmp 1319746 ( 2.78%) 88694031 ( 0.28%) 67.21
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 68221 ( 0.14%) 41671094 ( 0.13%) 610.83
ip6 1075613 ( 2.26%) 651885328 ( 2.07%) 606.06
pim 90 ( 0.00%) 5400 ( 0.00%) 60.00
other 63579 ( 0.13%) 17107954 ( 0.05%) 269.08
frag 376 ( 0.00%) 359127 ( 0.00%) 955.12
ip6 360969 ( 0.76%) 318206281 ( 1.01%) 881.53
tcp6 301694 ( 0.63%) 299952541 ( 0.95%) 994.23
http(s) 224625 ( 0.47%) 273409556 ( 0.87%) 1217.18
http(c) 54812 ( 0.12%) 5466913 ( 0.02%) 99.74
squid 20 ( 0.00%) 4524 ( 0.00%) 226.20
smtp 126 ( 0.00%) 110284 ( 0.00%) 875.27
ftp 79 ( 0.00%) 6902 ( 0.00%) 87.37
ssh 12 ( 0.00%) 1008 ( 0.00%) 84.00
dns 33 ( 0.00%) 14995 ( 0.00%) 454.39
bgp 92 ( 0.00%) 30114 ( 0.00%) 327.33
other 21895 ( 0.05%) 20908245 ( 0.07%) 954.93
udp6 39710 ( 0.08%) 14586432 ( 0.05%) 367.32
dns 34371 ( 0.07%) 11085966 ( 0.04%) 322.54
realaud 1 ( 0.00%) 117 ( 0.00%) 117.00
other 5338 ( 0.01%) 3500349 ( 0.01%) 655.74
icmp6 18579 ( 0.04%) 2753103 ( 0.01%) 148.18
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 871 ( 0.00%) 898577 ( 0.00%) 1031.66
tcpdump file: 201209021400.dump.gz (888.36 MB)