Traffic Trace Info
DumpFile: 201210221400.dump
FileSize: 2735.34MB
Id: 201210221400
StartTime: Mon Oct 22 14:00:00 2012
EndTime: Mon Oct 22 14:15:00 2012
TotalTime: 899.62 seconds
TotalCapSize: -1933.57MB CapLen: 96 bytes
# of packets: 37545699 (30564.42MB)
AvgRate: 285.00Mbps stddev:37.77M
IP flow (unique src/dst pair) Information
# of flows: 1922946 (avg. 19.53 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.7% 3.6% 3.1% 2.5% 2.1% 2.1% 1.8% 1.6% 1.5% 1.4%
IP address Information
# of IPv4 addresses: 1426475
Top 10 bandwidth usage (bytes/total in %):
12.3% 9.8% 7.2% 5.4% 5.1% 5.0% 3.9% 3.7% 2.8% 2.7%
# of IPv6 addresses: 8858
Top 10 bandwidth usage (bytes/total in %):
50.5% 24.3% 17.9% 5.2% 4.7% 3.6% 1.8% 1.8% 1.6% 1.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201210221400.pktlen.png)
detailed numbers
[ 32- 63]: 6408658
[ 64- 127]: 7242857
[ 128- 255]: 1054492
[ 256- 511]: 1386767
[ 512- 1023]: 1278464
[ 1024- 2047]: 20174461
Protocol Breakdown
![[protocol breakdown chart]](201210221400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37545699 (100.00%) 32049117612 (100.00%) 853.60
ip 35422785 ( 94.35%) 29893475083 ( 93.27%) 843.91
tcp 31103913 ( 82.84%) 28586969834 ( 89.20%) 919.08
http(s) 14311478 ( 38.12%) 17941890552 ( 55.98%) 1253.67
http(c) 8999651 ( 23.97%) 4694222024 ( 14.65%) 521.60
squid 46166 ( 0.12%) 16059038 ( 0.05%) 347.85
smtp 65541 ( 0.17%) 28571813 ( 0.09%) 435.94
nntp 6 ( 0.00%) 366 ( 0.00%) 61.00
ftp 18179 ( 0.05%) 4114791 ( 0.01%) 226.35
pop3 7005 ( 0.02%) 3021760 ( 0.01%) 431.37
imap 2211 ( 0.01%) 495605 ( 0.00%) 224.15
telnet 10385 ( 0.03%) 786674 ( 0.00%) 75.75
ssh 113595 ( 0.30%) 10157331 ( 0.03%) 89.42
dns 7164 ( 0.02%) 3875072 ( 0.01%) 540.91
bgp 567 ( 0.00%) 119903 ( 0.00%) 211.47
napster 28 ( 0.00%) 2402 ( 0.00%) 85.79
realaud 15 ( 0.00%) 2861 ( 0.00%) 190.73
rtsp 147 ( 0.00%) 70003 ( 0.00%) 476.21
icecast 26136 ( 0.07%) 16558667 ( 0.05%) 633.56
hotline 12 ( 0.00%) 1130 ( 0.00%) 94.17
other 7495627 ( 19.96%) 5867019842 ( 18.31%) 782.73
udp 2342600 ( 6.24%) 1030472093 ( 3.22%) 439.88
dns 684996 ( 1.82%) 318502731 ( 0.99%) 464.97
realaud 4 ( 0.00%) 640 ( 0.00%) 160.00
halflif 16 ( 0.00%) 2572 ( 0.00%) 160.75
starcra 40 ( 0.00%) 4392 ( 0.00%) 109.80
everque 116 ( 0.00%) 20452 ( 0.00%) 176.31
unreal 7 ( 0.00%) 1450 ( 0.00%) 207.14
quake 49 ( 0.00%) 5949 ( 0.00%) 121.41
cuseeme 8 ( 0.00%) 892 ( 0.00%) 111.50
other 1657055 ( 4.41%) 711774003 ( 2.22%) 429.54
icmp 1378299 ( 3.67%) 89871043 ( 0.28%) 65.20
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 6645 ( 0.02%) 3051174 ( 0.01%) 459.17
ip6 530017 ( 1.41%) 166570718 ( 0.52%) 314.27
pim 16 ( 0.00%) 960 ( 0.00%) 60.00
other 61110 ( 0.16%) 16519991 ( 0.05%) 270.33
frag 196835 ( 0.52%) 201253488 ( 0.63%) 1022.45
ip6 2122914 ( 5.65%) 2155642529 ( 6.73%) 1015.42
tcp6 1953598 ( 5.20%) 2118506752 ( 6.61%) 1084.41
http(s) 1735141 ( 4.62%) 2052665559 ( 6.40%) 1183.00
http(c) 146758 ( 0.39%) 17442351 ( 0.05%) 118.85
smtp 272 ( 0.00%) 142402 ( 0.00%) 523.54
ftp 12548 ( 0.03%) 4753070 ( 0.01%) 378.79
ssh 700 ( 0.00%) 105268 ( 0.00%) 150.38
dns 127 ( 0.00%) 51158 ( 0.00%) 402.82
bgp 101 ( 0.00%) 19020 ( 0.00%) 188.32
other 57951 ( 0.15%) 43327924 ( 0.14%) 747.66
udp6 135119 ( 0.36%) 30976465 ( 0.10%) 229.25
dns 114066 ( 0.30%) 23847661 ( 0.07%) 209.07
starcra 1 ( 0.00%) 104 ( 0.00%) 104.00
quake 1 ( 0.00%) 118 ( 0.00%) 118.00
cuseeme 1 ( 0.00%) 93 ( 0.00%) 93.00
other 21050 ( 0.06%) 7128489 ( 0.02%) 338.65
icmp6 32550 ( 0.09%) 4603002 ( 0.01%) 141.41
ip6 83 ( 0.00%) 11344 ( 0.00%) 136.67
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1534 ( 0.00%) 1540886 ( 0.00%) 1004.49
tcpdump file: 201210221400.dump.gz (861.32 MB)