Traffic Trace Info
DumpFile: 201210091400.dump
FileSize: 2689.16MB
Id: 201210091400
StartTime: Tue Oct 9 14:00:00 2012
EndTime: Tue Oct 9 14:15:01 2012
TotalTime: 900.28 seconds
TotalCapSize: -1977.18MB CapLen: 96 bytes
# of packets: 37377396 (26773.66MB)
AvgRate: 249.47Mbps stddev:47.56M
IP flow (unique src/dst pair) Information
# of flows: 3149417 (avg. 11.87 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.8% 1.6% 1.4% 1.3% 1.2% 0.9% 0.8% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 2024883
Top 10 bandwidth usage (bytes/total in %):
12.2% 5.4% 5.2% 4.1% 4.0% 2.9% 2.8% 2.4% 2.3% 2.2%
# of IPv6 addresses: 8633
Top 10 bandwidth usage (bytes/total in %):
20.6% 7.2% 6.0% 5.3% 5.3% 4.1% 3.4% 2.8% 2.7% 2.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201210091400.pktlen.png)
detailed numbers
[ 32- 63]: 7770601
[ 64- 127]: 9023585
[ 128- 255]: 801027
[ 256- 511]: 1177134
[ 512- 1023]: 1177760
[ 1024- 2047]: 17427289
Protocol Breakdown
![[protocol breakdown chart]](201210091400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37377396 (100.00%) 28074216162 (100.00%) 751.10
ip 35439784 ( 94.82%) 26397581119 ( 94.03%) 744.86
tcp 28380502 ( 75.93%) 23611966973 ( 84.11%) 831.98
http(s) 14775905 ( 39.53%) 18497791233 ( 65.89%) 1251.89
http(c) 10229121 ( 27.37%) 2530311907 ( 9.01%) 247.36
squid 328039 ( 0.88%) 281730641 ( 1.00%) 858.83
smtp 78365 ( 0.21%) 21929520 ( 0.08%) 279.84
nntp 2 ( 0.00%) 120 ( 0.00%) 60.00
ftp 8894 ( 0.02%) 687633 ( 0.00%) 77.31
pop3 19412 ( 0.05%) 19275114 ( 0.07%) 992.95
imap 6360 ( 0.02%) 5939068 ( 0.02%) 933.82
telnet 8408 ( 0.02%) 641503 ( 0.00%) 76.30
ssh 147274 ( 0.39%) 23455492 ( 0.08%) 159.26
dns 7669 ( 0.02%) 720659 ( 0.00%) 93.97
bgp 570 ( 0.00%) 130571 ( 0.00%) 229.07
napster 220 ( 0.00%) 23634 ( 0.00%) 107.43
realaud 92 ( 0.00%) 9159 ( 0.00%) 99.55
rtsp 1343 ( 0.00%) 1100589 ( 0.00%) 819.50
icecast 33055 ( 0.09%) 30875319 ( 0.11%) 934.06
hotline 20 ( 0.00%) 2511 ( 0.00%) 125.55
other 2735753 ( 7.32%) 2197342300 ( 7.83%) 803.19
udp 3255398 ( 8.71%) 1887261396 ( 6.72%) 579.73
dns 904796 ( 2.42%) 482658567 ( 1.72%) 533.44
realaud 7 ( 0.00%) 613 ( 0.00%) 87.57
halflif 14 ( 0.00%) 1449 ( 0.00%) 103.50
starcra 20 ( 0.00%) 2583 ( 0.00%) 129.15
everque 306 ( 0.00%) 46695 ( 0.00%) 152.60
unreal 5 ( 0.00%) 731 ( 0.00%) 146.20
quake 22 ( 0.00%) 5651 ( 0.00%) 256.86
cuseeme 1 ( 0.00%) 84 ( 0.00%) 84.00
other 2350060 ( 6.29%) 1404382192 ( 5.00%) 597.59
icmp 2889443 ( 7.73%) 364704216 ( 1.30%) 126.22
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 15036 ( 0.04%) 3354896 ( 0.01%) 223.12
ip6 837014 ( 2.24%) 514773668 ( 1.83%) 615.01
pim 14 ( 0.00%) 840 ( 0.00%) 60.00
other 62192 ( 0.17%) 15499860 ( 0.06%) 249.23
frag 324482 ( 0.87%) 354535033 ( 1.26%) 1092.62
ip6 1937612 ( 5.18%) 1676635043 ( 5.97%) 865.31
tcp6 1833583 ( 4.91%) 1646976567 ( 5.87%) 898.23
http(s) 1362932 ( 3.65%) 1477440590 ( 5.26%) 1084.02
http(c) 370205 ( 0.99%) 39130573 ( 0.14%) 105.70
smtp 148 ( 0.00%) 117298 ( 0.00%) 792.55
ftp 112 ( 0.00%) 10476 ( 0.00%) 93.54
ssh 12 ( 0.00%) 1008 ( 0.00%) 84.00
dns 311 ( 0.00%) 61554 ( 0.00%) 197.92
bgp 91 ( 0.00%) 19357 ( 0.00%) 212.71
other 99772 ( 0.27%) 130195711 ( 0.46%) 1304.93
udp6 80750 ( 0.22%) 25160464 ( 0.09%) 311.58
dns 78990 ( 0.21%) 24956849 ( 0.09%) 315.95
halflif 2 ( 0.00%) 224 ( 0.00%) 112.00
everque 1 ( 0.00%) 105 ( 0.00%) 105.00
unreal 1 ( 0.00%) 106 ( 0.00%) 106.00
quake 1 ( 0.00%) 101 ( 0.00%) 101.00
other 1755 ( 0.00%) 203079 ( 0.00%) 115.71
icmp6 21813 ( 0.06%) 3204343 ( 0.01%) 146.90
ip6 81 ( 0.00%) 11058 ( 0.00%) 136.52
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1355 ( 0.00%) 1278531 ( 0.00%) 943.57
tcpdump file: 201210091400.dump.gz (865.45 MB)