Traffic Trace Info
DumpFile: 201301111400.dump
FileSize: 2638.20MB
Id: 201301111400
StartTime: Fri Jan 11 14:00:01 2013
EndTime: Fri Jan 11 14:15:00 2013
TotalTime: 899.08 seconds
TotalCapSize: -2003.58MB CapLen: 96 bytes
# of packets: 35768073 (26593.17MB)
AvgRate: 248.06Mbps stddev:47.90M
IP flow (unique src/dst pair) Information
# of flows: 1896251 (avg. 18.86 pkts/flow)
Top 10 big flow size (bytes/total in %):
9.3% 3.2% 2.2% 1.9% 1.3% 1.3% 1.2% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 1409231
Top 10 bandwidth usage (bytes/total in %):
17.1% 10.3% 10.1% 7.6% 4.2% 4.0% 3.5% 3.4% 3.4% 2.6%
# of IPv6 addresses: 10921
Top 10 bandwidth usage (bytes/total in %):
5.6% 5.6% 5.3% 5.0% 4.4% 4.2% 3.1% 2.9% 2.8% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201301111400.pktlen.png)
detailed numbers
[ 32- 63]: 5133806
[ 64- 127]: 9817577
[ 128- 255]: 998111
[ 256- 511]: 1213552
[ 512- 1023]: 1311411
[ 1024- 2047]: 17293616
Protocol Breakdown
![[protocol breakdown chart]](201301111400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 35768073 (100.00%) 27884964258 (100.00%) 779.60
ip 33248704 ( 92.96%) 25654906390 ( 92.00%) 771.61
tcp 28039358 ( 78.39%) 24042147748 ( 86.22%) 857.44
http(s) 14727272 ( 41.17%) 18626215979 ( 66.80%) 1264.74
http(c) 9471738 ( 26.48%) 2550024625 ( 9.14%) 269.22
squid 34608 ( 0.10%) 10918794 ( 0.04%) 315.50
smtp 74179 ( 0.21%) 22619272 ( 0.08%) 304.93
nntp 116 ( 0.00%) 6960 ( 0.00%) 60.00
ftp 42674 ( 0.12%) 34578153 ( 0.12%) 810.29
pop3 8418 ( 0.02%) 2438492 ( 0.01%) 289.68
imap 3618 ( 0.01%) 463810 ( 0.00%) 128.20
telnet 49907 ( 0.14%) 5154663 ( 0.02%) 103.29
ssh 61543 ( 0.17%) 7917891 ( 0.03%) 128.66
dns 1685 ( 0.00%) 291537 ( 0.00%) 173.02
bgp 1926 ( 0.01%) 243978 ( 0.00%) 126.68
napster 21 ( 0.00%) 2137 ( 0.00%) 101.76
icecast 20057 ( 0.06%) 11092957 ( 0.04%) 553.07
other 3541596 ( 9.90%) 2770178500 ( 9.93%) 782.18
udp 2898483 ( 8.10%) 1200264726 ( 4.30%) 414.10
dns 1260159 ( 3.52%) 492302208 ( 1.77%) 390.67
rip 10 ( 0.00%) 750 ( 0.00%) 75.00
realaud 26 ( 0.00%) 3781 ( 0.00%) 145.42
halflif 49 ( 0.00%) 5435 ( 0.00%) 110.92
starcra 38 ( 0.00%) 4204 ( 0.00%) 110.63
everque 106 ( 0.00%) 12637 ( 0.00%) 119.22
unreal 18 ( 0.00%) 3067 ( 0.00%) 170.39
quake 11 ( 0.00%) 1497 ( 0.00%) 136.09
cuseeme 8 ( 0.00%) 624 ( 0.00%) 78.00
other 1637363 ( 4.58%) 707561056 ( 2.54%) 432.13
icmp 1636648 ( 4.58%) 157861057 ( 0.57%) 96.45
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 22091 ( 0.06%) 8012806 ( 0.03%) 362.72
ip6 599163 ( 1.68%) 231207081 ( 0.83%) 385.88
other 52776 ( 0.15%) 15393702 ( 0.06%) 291.68
frag 284315 ( 0.79%) 300974699 ( 1.08%) 1058.60
ip6 2519369 ( 7.04%) 2230057868 ( 8.00%) 885.17
tcp6 2009444 ( 5.62%) 1765560615 ( 6.33%) 878.63
http(s) 1515419 ( 4.24%) 1535300088 ( 5.51%) 1013.12
http(c) 278215 ( 0.78%) 35093850 ( 0.13%) 126.14
smtp 672 ( 0.00%) 208682 ( 0.00%) 310.54
ftp 66 ( 0.00%) 5876 ( 0.00%) 89.03
ssh 12 ( 0.00%) 1008 ( 0.00%) 84.00
dns 332 ( 0.00%) 70516 ( 0.00%) 212.40
bgp 106 ( 0.00%) 39095 ( 0.00%) 368.82
other 214622 ( 0.60%) 194841500 ( 0.70%) 907.84
udp6 267388 ( 0.75%) 207102377 ( 0.74%) 774.54
dns 70818 ( 0.20%) 21818632 ( 0.08%) 308.09
halflif 3 ( 0.00%) 331 ( 0.00%) 110.33
everque 1 ( 0.00%) 107 ( 0.00%) 107.00
other 196566 ( 0.55%) 185283307 ( 0.66%) 942.60
icmp6 29153 ( 0.08%) 3191018 ( 0.01%) 109.46
ip6 82 ( 0.00%) 11176 ( 0.00%) 136.29
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 213272 ( 0.60%) 254188602 ( 0.91%) 1191.85
tcpdump file: 201301111400.dump.gz (828.07 MB)