Traffic Trace Info
DumpFile: 201210151400.dump
FileSize: 2797.19MB
Id: 201210151400
StartTime: Mon Oct 15 14:00:00 2012
EndTime: Mon Oct 15 14:15:00 2012
TotalTime: 900.13 seconds
TotalCapSize: -1874.44MB CapLen: 96 bytes
# of packets: 37723597 (29925.07MB)
AvgRate: 278.82Mbps stddev:38.65M
IP flow (unique src/dst pair) Information
# of flows: 2089595 (avg. 18.05 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.1% 3.3% 3.1% 2.0% 1.7% 1.3% 1.3% 1.2% 1.2% 1.1%
IP address Information
# of IPv4 addresses: 1517429
Top 10 bandwidth usage (bytes/total in %):
11.5% 7.5% 5.8% 5.3% 5.2% 4.4% 2.7% 2.5% 2.4% 2.3%
# of IPv6 addresses: 8679
Top 10 bandwidth usage (bytes/total in %):
48.5% 20.9% 19.5% 10.1% 10.1% 7.8% 2.8% 2.6% 2.5% 2.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201210151400.pktlen.png)
detailed numbers
[ 32- 63]: 6454907
[ 64- 127]: 8089917
[ 128- 255]: 978977
[ 256- 511]: 1121550
[ 512- 1023]: 1268916
[ 1024- 2047]: 19809330
Protocol Breakdown
![[protocol breakdown chart]](201210151400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37723597 (100.00%) 31378707741 (100.00%) 831.81
ip 33221269 ( 88.06%) 26369757161 ( 84.04%) 793.76
tcp 28029776 ( 74.30%) 24543256592 ( 78.22%) 875.61
http(s) 12604749 ( 33.41%) 15377811949 ( 49.01%) 1220.00
http(c) 8953805 ( 23.74%) 4066569334 ( 12.96%) 454.17
squid 134266 ( 0.36%) 110426626 ( 0.35%) 822.45
smtp 75133 ( 0.20%) 34185991 ( 0.11%) 455.01
ftp 10802 ( 0.03%) 2506408 ( 0.01%) 232.03
pop3 10219 ( 0.03%) 2633386 ( 0.01%) 257.70
imap 11487 ( 0.03%) 14928452 ( 0.05%) 1299.60
telnet 41713 ( 0.11%) 3080664 ( 0.01%) 73.85
ssh 188283 ( 0.50%) 66210481 ( 0.21%) 351.65
dns 6501 ( 0.02%) 3828026 ( 0.01%) 588.84
bgp 707 ( 0.00%) 260877 ( 0.00%) 368.99
napster 10 ( 0.00%) 1052 ( 0.00%) 105.20
realaud 110 ( 0.00%) 22203 ( 0.00%) 201.85
rtsp 4 ( 0.00%) 240 ( 0.00%) 60.00
icecast 4957 ( 0.01%) 735730 ( 0.00%) 148.42
hotline 23 ( 0.00%) 1428 ( 0.00%) 62.09
other 5987005 ( 15.87%) 4860053625 ( 15.49%) 811.77
udp 2686139 ( 7.12%) 1303227612 ( 4.15%) 485.17
dns 717264 ( 1.90%) 380060174 ( 1.21%) 529.87
realaud 3 ( 0.00%) 335 ( 0.00%) 111.67
halflif 924 ( 0.00%) 734711 ( 0.00%) 795.14
starcra 50 ( 0.00%) 7329 ( 0.00%) 146.58
everque 284 ( 0.00%) 42890 ( 0.00%) 151.02
unreal 8 ( 0.00%) 1438 ( 0.00%) 179.75
quake 16 ( 0.00%) 2711 ( 0.00%) 169.44
cuseeme 3 ( 0.00%) 274 ( 0.00%) 91.33
other 1967465 ( 5.22%) 922304543 ( 2.94%) 468.78
icmp 1398305 ( 3.71%) 91993155 ( 0.29%) 65.79
ipip 186 ( 0.00%) 19344 ( 0.00%) 104.00
ipsec 4198 ( 0.01%) 1696460 ( 0.01%) 404.11
ip6 1043110 ( 2.77%) 412737273 ( 1.32%) 395.68
pim 16 ( 0.00%) 960 ( 0.00%) 60.00
other 59539 ( 0.16%) 16825765 ( 0.05%) 282.60
frag 278046 ( 0.74%) 284174719 ( 0.91%) 1022.04
ip6 4502328 ( 11.94%) 5008950580 ( 15.96%) 1112.52
tcp6 4363755 ( 11.57%) 4978674775 ( 15.87%) 1140.92
http(s) 3779350 ( 10.02%) 4893227288 ( 15.59%) 1294.73
http(c) 527795 ( 1.40%) 52120591 ( 0.17%) 98.75
smtp 250 ( 0.00%) 109936 ( 0.00%) 439.74
ftp 17250 ( 0.05%) 1793452 ( 0.01%) 103.97
pop3 134 ( 0.00%) 33362 ( 0.00%) 248.97
ssh 142 ( 0.00%) 19428 ( 0.00%) 136.82
dns 351 ( 0.00%) 63599 ( 0.00%) 181.19
bgp 95 ( 0.00%) 20846 ( 0.00%) 219.43
other 38388 ( 0.10%) 31286273 ( 0.10%) 815.00
udp6 112132 ( 0.30%) 25359190 ( 0.08%) 226.15
dns 108655 ( 0.29%) 25012012 ( 0.08%) 230.20
realaud 1 ( 0.00%) 115 ( 0.00%) 115.00
halflif 1 ( 0.00%) 107 ( 0.00%) 107.00
quake 2 ( 0.00%) 204 ( 0.00%) 102.00
other 3473 ( 0.01%) 346752 ( 0.00%) 99.84
icmp6 24874 ( 0.07%) 3494133 ( 0.01%) 140.47
ip6 85 ( 0.00%) 11580 ( 0.00%) 136.24
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 1451 ( 0.00%) 1406686 ( 0.00%) 969.46
tcpdump file: 201210151400.dump.gz (865.38 MB)