Traffic Trace Info
DumpFile: 201209191400.dump
FileSize: 2029.43MB
Id: 201209191400
StartTime: Wed Sep 19 14:00:00 2012
EndTime: Wed Sep 19 14:15:01 2012
TotalTime: 900.16 seconds
TotalCapSize: 1604.09MB CapLen: 96 bytes
# of packets: 27874549 (22709.64MB)
AvgRate: 211.63Mbps stddev:31.93M
IP flow (unique src/dst pair) Information
# of flows: 1015710 (avg. 27.44 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.5% 3.3% 3.1% 2.3% 2.0% 1.8% 1.7% 1.7% 1.5% 1.4%
IP address Information
# of IPv4 addresses: 504504
Top 10 bandwidth usage (bytes/total in %):
15.6% 9.6% 8.8% 4.9% 3.6% 3.4% 3.4% 3.2% 3.2% 3.1%
# of IPv6 addresses: 7922
Top 10 bandwidth usage (bytes/total in %):
31.6% 31.5% 26.6% 13.9% 6.6% 3.3% 3.3% 2.2% 1.7% 1.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201209191400.pktlen.png)
detailed numbers
[ 32- 63]: 4696949
[ 64- 127]: 5914327
[ 128- 255]: 802170
[ 256- 511]: 858345
[ 512- 1023]: 800634
[ 1024- 2047]: 14802124
Protocol Breakdown
![[protocol breakdown chart]](201209191400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 27874549 (100.00%) 23812779108 (100.00%) 854.28
ip 26456121 ( 94.91%) 22335671841 ( 93.80%) 844.25
tcp 23548927 ( 84.48%) 21212028987 ( 89.08%) 900.76
http(s) 12909990 ( 46.31%) 17223227136 ( 72.33%) 1334.10
http(c) 6907388 ( 24.78%) 1148523582 ( 4.82%) 166.27
squid 196639 ( 0.71%) 147172815 ( 0.62%) 748.44
smtp 85405 ( 0.31%) 17124143 ( 0.07%) 200.51
nntp 24 ( 0.00%) 1496 ( 0.00%) 62.33
ftp 32022 ( 0.11%) 17549022 ( 0.07%) 548.03
pop3 8981 ( 0.03%) 8419688 ( 0.04%) 937.50
imap 1678 ( 0.01%) 284599 ( 0.00%) 169.61
telnet 1411 ( 0.01%) 123985 ( 0.00%) 87.87
ssh 29861 ( 0.11%) 8590001 ( 0.04%) 287.67
dns 5870 ( 0.02%) 848668 ( 0.00%) 144.58
bgp 600 ( 0.00%) 131199 ( 0.00%) 218.66
napster 111 ( 0.00%) 9855 ( 0.00%) 88.78
realaud 121 ( 0.00%) 14857 ( 0.00%) 122.79
icecast 40631 ( 0.15%) 38389428 ( 0.16%) 944.83
hotline 14 ( 0.00%) 1604 ( 0.00%) 114.57
other 3328181 ( 11.94%) 2601616909 ( 10.93%) 781.69
udp 2113438 ( 7.58%) 941974211 ( 3.96%) 445.71
dns 698982 ( 2.51%) 339777452 ( 1.43%) 486.10
realaud 7 ( 0.00%) 874 ( 0.00%) 124.86
halflif 27 ( 0.00%) 4119 ( 0.00%) 152.56
starcra 19 ( 0.00%) 2755 ( 0.00%) 145.00
everque 179 ( 0.00%) 38456 ( 0.00%) 214.84
unreal 8 ( 0.00%) 1600 ( 0.00%) 200.00
quake 6 ( 0.00%) 574 ( 0.00%) 95.67
cuseeme 7 ( 0.00%) 1153 ( 0.00%) 164.71
other 1414030 ( 5.07%) 602086458 ( 2.53%) 425.79
icmp 508630 ( 1.82%) 86080210 ( 0.36%) 169.24
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 20361 ( 0.07%) 3110966 ( 0.01%) 152.79
ip6 201518 ( 0.72%) 74612576 ( 0.31%) 370.25
pim 79 ( 0.00%) 4740 ( 0.00%) 60.00
other 62984 ( 0.23%) 17840991 ( 0.07%) 283.26
frag 222088 ( 0.80%) 224053470 ( 0.94%) 1008.85
ip6 1418428 ( 5.09%) 1477107267 ( 6.20%) 1041.37
tcp6 1305176 ( 4.68%) 1435947143 ( 6.03%) 1100.19
http(s) 765999 ( 2.75%) 931366491 ( 3.91%) 1215.88
http(c) 181543 ( 0.65%) 16444364 ( 0.07%) 90.58
squid 31 ( 0.00%) 5185 ( 0.00%) 167.26
smtp 1913 ( 0.01%) 593338 ( 0.00%) 310.16
ftp 20975 ( 0.08%) 2861629 ( 0.01%) 136.43
ssh 12 ( 0.00%) 1008 ( 0.00%) 84.00
dns 116 ( 0.00%) 44966 ( 0.00%) 387.64
bgp 120 ( 0.00%) 28483 ( 0.00%) 237.36
other 334467 ( 1.20%) 484601679 ( 2.04%) 1448.88
udp6 92493 ( 0.33%) 37225730 ( 0.16%) 402.47
dns 61492 ( 0.22%) 17844810 ( 0.07%) 290.20
starcra 1 ( 0.00%) 109 ( 0.00%) 109.00
everque 1 ( 0.00%) 111 ( 0.00%) 111.00
quake 1 ( 0.00%) 111 ( 0.00%) 111.00
other 30998 ( 0.11%) 19380589 ( 0.08%) 625.22
icmp6 19702 ( 0.07%) 2957890 ( 0.01%) 150.13
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 942 ( 0.00%) 960876 ( 0.00%) 1020.04
tcpdump file: 201209191400.dump.gz (627.71 MB)