Traffic Trace Info
DumpFile: 201210251400.dump
FileSize: 2817.11MB
Id: 201210251400
StartTime: Thu Oct 25 14:00:01 2012
EndTime: Thu Oct 25 14:15:00 2012
TotalTime: 899.67 seconds
TotalCapSize: -1864.04MB CapLen: 96 bytes
# of packets: 38348214 (28915.47MB)
AvgRate: 269.68Mbps stddev:35.54M
IP flow (unique src/dst pair) Information
# of flows: 2288087 (avg. 16.76 pkts/flow)
Top 10 big flow size (bytes/total in %):
13.0% 5.1% 5.1% 4.9% 1.6% 1.2% 1.2% 1.0% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 1708257
Top 10 bandwidth usage (bytes/total in %):
14.4% 14.4% 8.5% 7.8% 5.8% 5.7% 5.6% 3.8% 3.2% 3.1%
# of IPv6 addresses: 8430
Top 10 bandwidth usage (bytes/total in %):
60.1% 55.8% 14.8% 6.1% 1.4% 1.4% 1.3% 1.3% 1.2% 1.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201210251400.pktlen.png)
detailed numbers
[ 32- 63]: 6736210
[ 64- 127]: 9675771
[ 128- 255]: 934195
[ 256- 511]: 1000595
[ 512- 1023]: 1014461
[ 1024- 2047]: 18986982
Protocol Breakdown
![[protocol breakdown chart]](201210251400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 38348214 (100.00%) 30320065275 (100.00%) 790.65
ip 35251687 ( 91.93%) 27549771466 ( 90.86%) 781.52
tcp 29139436 ( 75.99%) 25351729309 ( 83.61%) 870.01
http(s) 16621144 ( 43.34%) 21048664740 ( 69.42%) 1266.38
http(c) 9490625 ( 24.75%) 2381045930 ( 7.85%) 250.88
squid 47028 ( 0.12%) 18941259 ( 0.06%) 402.77
smtp 58511 ( 0.15%) 19966033 ( 0.07%) 341.24
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 18039 ( 0.05%) 4285397 ( 0.01%) 237.56
pop3 4800 ( 0.01%) 2919063 ( 0.01%) 608.14
imap 4261 ( 0.01%) 1986290 ( 0.01%) 466.16
telnet 3529 ( 0.01%) 277935 ( 0.00%) 78.76
ssh 73254 ( 0.19%) 11426518 ( 0.04%) 155.98
dns 5051 ( 0.01%) 468568 ( 0.00%) 92.77
bgp 572 ( 0.00%) 129183 ( 0.00%) 225.84
napster 34 ( 0.00%) 4009 ( 0.00%) 117.91
realaud 3 ( 0.00%) 192 ( 0.00%) 64.00
rtsp 16 ( 0.00%) 2910 ( 0.00%) 181.88
icecast 28310 ( 0.07%) 16675231 ( 0.05%) 589.02
hotline 9254 ( 0.02%) 8754242 ( 0.03%) 946.00
other 2775004 ( 7.24%) 1836181749 ( 6.06%) 661.69
udp 3768462 ( 9.83%) 1918509047 ( 6.33%) 509.10
dns 1014472 ( 2.65%) 421050699 ( 1.39%) 415.04
rip 1 ( 0.00%) 94 ( 0.00%) 94.00
realaud 5 ( 0.00%) 420 ( 0.00%) 84.00
halflif 21 ( 0.00%) 1990 ( 0.00%) 94.76
starcra 26 ( 0.00%) 7015 ( 0.00%) 269.81
everque 77 ( 0.00%) 14525 ( 0.00%) 188.64
unreal 11 ( 0.00%) 1789 ( 0.00%) 162.64
quake 18 ( 0.00%) 2502 ( 0.00%) 139.00
cuseeme 5 ( 0.00%) 348 ( 0.00%) 69.60
other 2752982 ( 7.18%) 1496595532 ( 4.94%) 543.63
icmp 1922201 ( 5.01%) 124841457 ( 0.41%) 64.95
ipip 186 ( 0.00%) 19380 ( 0.00%) 104.19
ipsec 11415 ( 0.03%) 4863134 ( 0.02%) 426.03
ip6 349397 ( 0.91%) 133876385 ( 0.44%) 383.16
pim 16 ( 0.00%) 960 ( 0.00%) 60.00
other 60574 ( 0.16%) 15931794 ( 0.05%) 263.01
frag 173162 ( 0.45%) 177355204 ( 0.58%) 1024.22
ip6 3096527 ( 8.07%) 2770293809 ( 9.14%) 894.65
tcp6 2946851 ( 7.68%) 2737585376 ( 9.03%) 928.99
http(s) 1071084 ( 2.79%) 1139266343 ( 3.76%) 1063.66
http(c) 154856 ( 0.40%) 18456042 ( 0.06%) 119.18
squid 1 ( 0.00%) 78 ( 0.00%) 78.00
smtp 117 ( 0.00%) 28499 ( 0.00%) 243.58
ftp 90 ( 0.00%) 8053 ( 0.00%) 89.48
ssh 12 ( 0.00%) 1008 ( 0.00%) 84.00
dns 284 ( 0.00%) 45877 ( 0.00%) 161.54
bgp 101 ( 0.00%) 28979 ( 0.00%) 286.92
other 1720306 ( 4.49%) 1579750497 ( 5.21%) 918.30
udp6 124012 ( 0.32%) 25864735 ( 0.09%) 208.57
dns 119444 ( 0.31%) 25456729 ( 0.08%) 213.13
realaud 1 ( 0.00%) 110 ( 0.00%) 110.00
everque 1 ( 0.00%) 106 ( 0.00%) 106.00
other 4566 ( 0.01%) 407790 ( 0.00%) 89.31
icmp6 22395 ( 0.06%) 3248778 ( 0.01%) 145.07
ip6 82 ( 0.00%) 11176 ( 0.00%) 136.29
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 3156 ( 0.01%) 3579528 ( 0.01%) 1134.20
tcpdump file: 201210251400.dump.gz (882.62 MB)