Traffic Trace Info
DumpFile: 201210081400.dump
FileSize: 1822.10MB
Id: 201210081400
StartTime: Mon Oct 8 14:00:00 2012
EndTime: Mon Oct 8 14:15:00 2012
TotalTime: 899.97 seconds
TotalCapSize: 1431.29MB CapLen: 96 bytes
# of packets: 25611177 (20542.04MB)
AvgRate: 191.41Mbps stddev:49.27M
IP flow (unique src/dst pair) Information
# of flows: 1903732 (avg. 13.45 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.7% 3.6% 2.9% 2.1% 2.0% 1.9% 1.7% 1.6% 1.6% 1.5%
IP address Information
# of IPv4 addresses: 1513385
Top 10 bandwidth usage (bytes/total in %):
13.2% 12.9% 10.6% 9.2% 5.1% 5.0% 3.8% 3.1% 3.1% 2.3%
# of IPv6 addresses: 6518
Top 10 bandwidth usage (bytes/total in %):
34.0% 34.0% 21.9% 21.1% 10.0% 8.0% 3.4% 2.6% 1.6% 1.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201210081400.pktlen.png)
detailed numbers
[ 32- 63]: 5278168
[ 64- 127]: 4861285
[ 128- 255]: 645353
[ 256- 511]: 570773
[ 512- 1023]: 842711
[ 1024- 2047]: 13412887
Protocol Breakdown
![[protocol breakdown chart]](201210081400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 25611177 (100.00%) 21539892809 (100.00%) 841.03
ip 24193589 ( 94.46%) 20210947333 ( 93.83%) 835.38
tcp 19526443 ( 76.24%) 18352050389 ( 85.20%) 939.86
http(s) 11224319 ( 43.83%) 14680816981 ( 68.16%) 1307.95
http(c) 5063435 ( 19.77%) 1094031393 ( 5.08%) 216.07
squid 889304 ( 3.47%) 887724303 ( 4.12%) 998.22
smtp 41819 ( 0.16%) 8085396 ( 0.04%) 193.34
ftp 20398 ( 0.08%) 3851549 ( 0.02%) 188.82
pop3 2445 ( 0.01%) 767155 ( 0.00%) 313.76
imap 1888 ( 0.01%) 197464 ( 0.00%) 104.59
telnet 71568 ( 0.28%) 5308480 ( 0.02%) 74.17
ssh 47187 ( 0.18%) 8805724 ( 0.04%) 186.61
dns 1108 ( 0.00%) 184977 ( 0.00%) 166.95
bgp 580 ( 0.00%) 165967 ( 0.00%) 286.15
realaud 347 ( 0.00%) 51155 ( 0.00%) 147.42
icecast 1521 ( 0.01%) 183822 ( 0.00%) 120.86
hotline 11 ( 0.00%) 1155 ( 0.00%) 105.00
other 2160512 ( 8.44%) 1661874808 ( 7.72%) 769.20
udp 2815965 ( 11.00%) 1575300958 ( 7.31%) 559.42
dns 746365 ( 2.91%) 478903004 ( 2.22%) 641.65
realaud 5 ( 0.00%) 1012 ( 0.00%) 202.40
halflif 19 ( 0.00%) 1707 ( 0.00%) 89.84
starcra 33 ( 0.00%) 3502 ( 0.00%) 106.12
everque 248 ( 0.00%) 31700 ( 0.00%) 127.82
quake 7 ( 0.00%) 713 ( 0.00%) 101.86
cuseeme 9 ( 0.00%) 689 ( 0.00%) 76.56
other 2069171 ( 8.08%) 1096286102 ( 5.09%) 529.82
icmp 1400737 ( 5.47%) 91700428 ( 0.43%) 65.47
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 4279 ( 0.02%) 1628570 ( 0.01%) 380.60
ip6 379021 ( 1.48%) 173655352 ( 0.81%) 458.17
pim 14 ( 0.00%) 840 ( 0.00%) 60.00
other 66945 ( 0.26%) 16591526 ( 0.08%) 247.84
frag 349085 ( 1.36%) 381502250 ( 1.77%) 1092.86
ip6 1417588 ( 5.54%) 1328945476 ( 6.17%) 937.47
tcp6 1345380 ( 5.25%) 1310677056 ( 6.08%) 974.21
http(s) 694159 ( 2.71%) 828594349 ( 3.85%) 1193.67
http(c) 201081 ( 0.79%) 18943140 ( 0.09%) 94.21
smtp 66 ( 0.00%) 6662 ( 0.00%) 100.94
ftp 1754 ( 0.01%) 183980 ( 0.00%) 104.89
ssh 12 ( 0.00%) 1008 ( 0.00%) 84.00
dns 336 ( 0.00%) 51390 ( 0.00%) 152.95
bgp 98 ( 0.00%) 23604 ( 0.00%) 240.86
other 447874 ( 1.75%) 462872923 ( 2.15%) 1033.49
udp6 49691 ( 0.19%) 14287623 ( 0.07%) 287.53
dns 47187 ( 0.18%) 13984177 ( 0.06%) 296.36
quake 1 ( 0.00%) 101 ( 0.00%) 101.00
other 2503 ( 0.01%) 303345 ( 0.00%) 121.19
icmp6 21576 ( 0.08%) 3154649 ( 0.01%) 146.21
ip6 84 ( 0.00%) 11412 ( 0.00%) 135.86
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 826 ( 0.00%) 810520 ( 0.00%) 981.26
tcpdump file: 201210081400.dump.gz (564.68 MB)