Traffic Trace Info
DumpFile: 201301211400.dump
FileSize: 2214.73MB
Id: 201301211400
StartTime: Mon Jan 21 14:00:00 2013
EndTime: Mon Jan 21 14:15:01 2013
TotalTime: 900.48 seconds
TotalCapSize: 1748.11MB CapLen: 96 bytes
# of packets: 30580286 (21902.31MB)
AvgRate: 204.01Mbps stddev:37.67M
IP flow (unique src/dst pair) Information
# of flows: 1822818 (avg. 16.78 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.3% 3.1% 2.2% 2.2% 2.0% 1.9% 1.6% 1.3% 1.2% 1.1%
IP address Information
# of IPv4 addresses: 1367917
Top 10 bandwidth usage (bytes/total in %):
13.8% 5.5% 4.3% 3.9% 3.7% 3.6% 3.5% 2.6% 2.5% 2.5%
# of IPv6 addresses: 14694
Top 10 bandwidth usage (bytes/total in %):
24.8% 21.1% 3.9% 3.9% 3.9% 3.9% 3.6% 3.2% 2.0% 2.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201301211400.pktlen.png)
detailed numbers
[ 32- 63]: 5500895
[ 64- 127]: 7615866
[ 128- 255]: 821905
[ 256- 511]: 1167571
[ 512- 1023]: 1114022
[ 1024- 2047]: 14360027
Protocol Breakdown
![[protocol breakdown chart]](201301211400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 30580286 (100.00%) 22966241506 (100.00%) 751.01
ip 28172793 ( 92.13%) 20748439382 ( 90.34%) 736.47
tcp 22118334 ( 72.33%) 18564361871 ( 80.83%) 839.32
http(s) 12173430 ( 39.81%) 14670898647 ( 63.88%) 1205.16
http(c) 7797249 ( 25.50%) 2725611876 ( 11.87%) 349.56
squid 54532 ( 0.18%) 46467463 ( 0.20%) 852.11
smtp 55901 ( 0.18%) 22013366 ( 0.10%) 393.79
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 1909 ( 0.01%) 140446 ( 0.00%) 73.57
pop3 4736 ( 0.02%) 1922586 ( 0.01%) 405.95
imap 2768 ( 0.01%) 364152 ( 0.00%) 131.56
telnet 4631 ( 0.02%) 1845674 ( 0.01%) 398.55
ssh 109154 ( 0.36%) 15889490 ( 0.07%) 145.57
dns 1160 ( 0.00%) 211061 ( 0.00%) 181.95
bgp 528 ( 0.00%) 120271 ( 0.00%) 227.79
napster 39 ( 0.00%) 3375 ( 0.00%) 86.54
realaud 15 ( 0.00%) 1862 ( 0.00%) 124.13
rtsp 5 ( 0.00%) 300 ( 0.00%) 60.00
icecast 42014 ( 0.14%) 38622357 ( 0.17%) 919.27
hotline 25 ( 0.00%) 3656 ( 0.00%) 146.24
other 1870235 ( 6.12%) 1040245109 ( 4.53%) 556.21
udp 3005781 ( 9.83%) 1190165629 ( 5.18%) 395.96
dns 1093691 ( 3.58%) 500218692 ( 2.18%) 457.37
realaud 9 ( 0.00%) 822 ( 0.00%) 91.33
halflif 298 ( 0.00%) 18557 ( 0.00%) 62.27
starcra 62 ( 0.00%) 9959 ( 0.00%) 160.63
everque 145 ( 0.00%) 28310 ( 0.00%) 195.24
unreal 3 ( 0.00%) 224 ( 0.00%) 74.67
quake 14 ( 0.00%) 1754 ( 0.00%) 125.29
cuseeme 3 ( 0.00%) 468 ( 0.00%) 156.00
other 1889324 ( 6.18%) 687773172 ( 2.99%) 364.03
icmp 2306995 ( 7.54%) 714193969 ( 3.11%) 309.58
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 33720 ( 0.11%) 12465224 ( 0.05%) 369.67
ip6 656696 ( 2.15%) 253528175 ( 1.10%) 386.07
other 51083 ( 0.17%) 13705354 ( 0.06%) 268.30
frag 305358 ( 1.00%) 315777246 ( 1.37%) 1034.12
ip6 2407493 ( 7.87%) 2217802124 ( 9.66%) 921.21
tcp6 2065583 ( 6.75%) 1954822841 ( 8.51%) 946.38
http(s) 1362358 ( 4.46%) 1364169310 ( 5.94%) 1001.33
http(c) 36888 ( 0.12%) 5169881 ( 0.02%) 140.15
smtp 766 ( 0.00%) 229853 ( 0.00%) 300.07
ftp 65 ( 0.00%) 5802 ( 0.00%) 89.26
ssh 821 ( 0.00%) 673658 ( 0.00%) 820.53
dns 379 ( 0.00%) 95284 ( 0.00%) 251.41
bgp 91 ( 0.00%) 25123 ( 0.00%) 276.08
other 664215 ( 2.17%) 584453930 ( 2.54%) 879.92
udp6 169086 ( 0.55%) 89682985 ( 0.39%) 530.40
dns 66935 ( 0.22%) 21032702 ( 0.09%) 314.23
starcra 2 ( 0.00%) 230 ( 0.00%) 115.00
everque 1 ( 0.00%) 105 ( 0.00%) 105.00
unreal 1 ( 0.00%) 101 ( 0.00%) 101.00
quake 16 ( 0.00%) 3156 ( 0.00%) 197.25
cuseeme 1 ( 0.00%) 110 ( 0.00%) 110.00
other 102130 ( 0.33%) 68646581 ( 0.30%) 672.15
icmp6 32100 ( 0.10%) 3819270 ( 0.02%) 118.98
ip6 85 ( 0.00%) 11580 ( 0.00%) 136.24
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 140609 ( 0.46%) 169461368 ( 0.74%) 1205.20
tcpdump file: 201301211400.dump.gz (725.76 MB)