Traffic Trace Info
DumpFile: 201301091400.dump
FileSize: 2981.91MB
Id: 201301091400
StartTime: Wed Jan 9 14:00:01 2013
EndTime: Wed Jan 9 14:15:00 2013
TotalTime: 899.64 seconds
TotalCapSize: -1725.57MB CapLen: 96 bytes
# of packets: 40073103 (31112.61MB)
AvgRate: 290.13Mbps stddev:60.08M
IP flow (unique src/dst pair) Information
# of flows: 1736310 (avg. 23.08 pkts/flow)
Top 10 big flow size (bytes/total in %):
22.9% 10.3% 3.6% 2.5% 2.5% 2.0% 1.3% 1.1% 0.9% 0.7%
IP address Information
# of IPv4 addresses: 1329683
Top 10 bandwidth usage (bytes/total in %):
42.6% 25.4% 11.4% 4.9% 4.2% 4.1% 3.9% 2.8% 2.8% 2.1%
# of IPv6 addresses: 13726
Top 10 bandwidth usage (bytes/total in %):
26.1% 26.1% 7.8% 7.8% 2.9% 2.6% 2.3% 2.1% 1.8% 1.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201301091400.pktlen.png)
detailed numbers
[ 32- 63]: 5543474
[ 64- 127]: 10603756
[ 128- 255]: 951826
[ 256- 511]: 958427
[ 512- 1023]: 1355200
[ 1024- 2047]: 20660420
Protocol Breakdown
![[protocol breakdown chart]](201301091400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 40073103 (100.00%) 32623940066 (100.00%) 814.11
ip 37290827 ( 93.06%) 30025327819 ( 92.03%) 805.17
tcp 32355135 ( 80.74%) 28378454831 ( 86.99%) 877.09
http(s) 13443529 ( 33.55%) 16515200002 ( 50.62%) 1228.49
http(c) 8357389 ( 20.86%) 2449026544 ( 7.51%) 293.04
squid 43192 ( 0.11%) 31336764 ( 0.10%) 725.52
smtp 79857 ( 0.20%) 29506282 ( 0.09%) 369.49
nntp 100 ( 0.00%) 6000 ( 0.00%) 60.00
ftp 2665 ( 0.01%) 213226 ( 0.00%) 80.01
pop3 6465 ( 0.02%) 4932948 ( 0.02%) 763.02
imap 7161 ( 0.02%) 4241518 ( 0.01%) 592.31
telnet 85672 ( 0.21%) 7276145 ( 0.02%) 84.93
ssh 38290 ( 0.10%) 6280248 ( 0.02%) 164.02
dns 5285 ( 0.01%) 3800203 ( 0.01%) 719.05
bgp 530 ( 0.00%) 105621 ( 0.00%) 199.28
napster 2465 ( 0.01%) 155888 ( 0.00%) 63.24
realaud 48 ( 0.00%) 4907 ( 0.00%) 102.23
rtsp 4 ( 0.00%) 240 ( 0.00%) 60.00
icecast 846 ( 0.00%) 99831 ( 0.00%) 118.00
hotline 5 ( 0.00%) 683 ( 0.00%) 136.60
other 10281616 ( 25.66%) 9326266821 ( 28.59%) 907.08
udp 2445784 ( 6.10%) 1105017574 ( 3.39%) 451.81
dns 1025612 ( 2.56%) 419695530 ( 1.29%) 409.21
rip 2 ( 0.00%) 180 ( 0.00%) 90.00
realaud 3 ( 0.00%) 669 ( 0.00%) 223.00
halflif 20 ( 0.00%) 2333 ( 0.00%) 116.65
starcra 23 ( 0.00%) 2225 ( 0.00%) 96.74
everque 146 ( 0.00%) 23300 ( 0.00%) 159.59
unreal 12 ( 0.00%) 927 ( 0.00%) 77.25
quake 20 ( 0.00%) 1843 ( 0.00%) 92.15
cuseeme 15 ( 0.00%) 1050 ( 0.00%) 70.00
other 1419363 ( 3.54%) 684618817 ( 2.10%) 482.34
icmp 1580445 ( 3.94%) 153996829 ( 0.47%) 97.44
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 36035 ( 0.09%) 13892122 ( 0.04%) 385.52
ip6 818366 ( 2.04%) 359106812 ( 1.10%) 438.81
pim 76 ( 0.00%) 4560 ( 0.00%) 60.00
other 54801 ( 0.14%) 14835821 ( 0.05%) 270.72
frag 186891 ( 0.47%) 221473144 ( 0.68%) 1185.04
ip6 2782276 ( 6.94%) 2598612247 ( 7.97%) 933.99
tcp6 2533747 ( 6.32%) 2420096396 ( 7.42%) 955.15
http(s) 1329009 ( 3.32%) 1369568750 ( 4.20%) 1030.52
http(c) 166881 ( 0.42%) 23591953 ( 0.07%) 141.37
squid 9 ( 0.00%) 1418 ( 0.00%) 157.56
smtp 342 ( 0.00%) 224527 ( 0.00%) 656.51
ftp 188 ( 0.00%) 18176 ( 0.00%) 96.68
ssh 116 ( 0.00%) 23032 ( 0.00%) 198.55
dns 407 ( 0.00%) 126614 ( 0.00%) 311.09
bgp 107 ( 0.00%) 44320 ( 0.00%) 414.21
icecast 11990 ( 0.03%) 15495540 ( 0.05%) 1292.37
other 1024698 ( 2.56%) 1011002066 ( 3.10%) 986.63
udp6 104889 ( 0.26%) 44930760 ( 0.14%) 428.36
dns 74736 ( 0.19%) 22419259 ( 0.07%) 299.98
quake 1 ( 0.00%) 102 ( 0.00%) 102.00
other 30152 ( 0.08%) 22511399 ( 0.07%) 746.60
icmp6 35533 ( 0.09%) 3584884 ( 0.01%) 100.89
ip6 86 ( 0.00%) 11648 ( 0.00%) 135.44
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 107990 ( 0.27%) 129984343 ( 0.40%) 1203.67
tcpdump file: 201301091400.dump.gz (894.36 MB)