Traffic Trace Info
DumpFile: 201301201400.dump
FileSize: 1382.25MB
Id: 201301201400
StartTime: Sun Jan 20 14:00:00 2013
EndTime: Sun Jan 20 14:15:00 2013
TotalTime: 899.73 seconds
TotalCapSize: 1079.65MB CapLen: 96 bytes
# of packets: 19830485 (13988.24MB)
AvgRate: 130.40Mbps stddev:22.75M
IP flow (unique src/dst pair) Information
# of flows: 1781975 (avg. 11.13 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.4% 3.1% 2.4% 2.4% 2.4% 2.1% 1.9% 1.8% 1.4% 1.3%
IP address Information
# of IPv4 addresses: 1346799
Top 10 bandwidth usage (bytes/total in %):
14.7% 10.8% 5.8% 4.0% 3.8% 3.6% 3.4% 3.3% 3.0% 2.6%
# of IPv6 addresses: 9810
Top 10 bandwidth usage (bytes/total in %):
8.6% 8.6% 8.1% 8.0% 5.0% 4.4% 3.1% 3.1% 2.3% 2.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201301201400.pktlen.png)
detailed numbers
[ 32- 63]: 3882908
[ 64- 127]: 4857497
[ 128- 255]: 534991
[ 256- 511]: 606355
[ 512- 1023]: 729666
[ 1024- 2047]: 9219068
Protocol Breakdown
![[protocol breakdown chart]](201301201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 19830485 (100.00%) 14667734146 (100.00%) 739.66
ip 18986953 ( 95.75%) 13944890977 ( 95.07%) 734.45
tcp 12941716 ( 65.26%) 11233294938 ( 76.59%) 867.99
http(s) 6956134 ( 35.08%) 8760394328 ( 59.73%) 1259.38
http(c) 3729275 ( 18.81%) 897279515 ( 6.12%) 240.60
squid 23529 ( 0.12%) 15170823 ( 0.10%) 644.77
smtp 105716 ( 0.53%) 78170535 ( 0.53%) 739.44
ftp 2978 ( 0.02%) 214464 ( 0.00%) 72.02
pop3 2644 ( 0.01%) 2159214 ( 0.01%) 816.65
imap 76078 ( 0.38%) 76393395 ( 0.52%) 1004.15
telnet 95631 ( 0.48%) 8518172 ( 0.06%) 89.07
ssh 117684 ( 0.59%) 17488198 ( 0.12%) 148.60
dns 879 ( 0.00%) 176403 ( 0.00%) 200.69
bgp 488 ( 0.00%) 91929 ( 0.00%) 188.38
napster 25 ( 0.00%) 2352 ( 0.00%) 94.08
realaud 19 ( 0.00%) 5625 ( 0.00%) 296.05
icecast 284 ( 0.00%) 29841 ( 0.00%) 105.07
hotline 8 ( 0.00%) 834 ( 0.00%) 104.25
other 1830344 ( 9.23%) 1377199310 ( 9.39%) 752.43
udp 3439097 ( 17.34%) 1895812236 ( 12.93%) 551.25
dns 778791 ( 3.93%) 458502398 ( 3.13%) 588.74
realaud 7 ( 0.00%) 2086 ( 0.00%) 298.00
halflif 43 ( 0.00%) 6062 ( 0.00%) 140.98
starcra 82 ( 0.00%) 16790 ( 0.00%) 204.76
everque 109 ( 0.00%) 11402 ( 0.00%) 104.61
unreal 170 ( 0.00%) 38911 ( 0.00%) 228.89
quake 6 ( 0.00%) 1069 ( 0.00%) 178.17
cuseeme 1 ( 0.00%) 94 ( 0.00%) 94.00
other 2659560 ( 13.41%) 1437077837 ( 9.80%) 540.34
icmp 2287323 ( 11.53%) 690105489 ( 4.70%) 301.71
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 14481 ( 0.07%) 5850494 ( 0.04%) 404.01
ip6 256682 ( 1.29%) 104711439 ( 0.71%) 407.94
other 47470 ( 0.24%) 15097221 ( 0.10%) 318.04
frag 290586 ( 1.47%) 346642483 ( 2.36%) 1192.91
ip6 843532 ( 4.25%) 722843169 ( 4.93%) 856.92
tcp6 675724 ( 3.41%) 593599826 ( 4.05%) 878.46
http(s) 551124 ( 2.78%) 575358677 ( 3.92%) 1043.97
http(c) 104467 ( 0.53%) 14357022 ( 0.10%) 137.43
smtp 73 ( 0.00%) 11465 ( 0.00%) 157.05
ftp 66 ( 0.00%) 5876 ( 0.00%) 89.03
ssh 12 ( 0.00%) 1008 ( 0.00%) 84.00
dns 249 ( 0.00%) 45481 ( 0.00%) 182.65
bgp 91 ( 0.00%) 27497 ( 0.00%) 302.16
other 19642 ( 0.10%) 3792800 ( 0.03%) 193.10
udp6 48732 ( 0.25%) 16243056 ( 0.11%) 333.31
dns 40012 ( 0.20%) 13069751 ( 0.09%) 326.65
everque 1 ( 0.00%) 93 ( 0.00%) 93.00
other 8719 ( 0.04%) 3173212 ( 0.02%) 363.94
icmp6 27829 ( 0.14%) 3244535 ( 0.02%) 116.59
ip6 86 ( 0.00%) 11648 ( 0.00%) 135.44
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 91131 ( 0.46%) 109740024 ( 0.75%) 1204.20
tcpdump file: 201301201400.dump.gz (452.51 MB)