Traffic Trace Info
DumpFile: 201301221400.dump
FileSize: 2560.78MB
Id: 201301221400
StartTime: Tue Jan 22 14:00:00 2013
EndTime: Tue Jan 22 14:15:01 2013
TotalTime: 900.42 seconds
TotalCapSize: 2017.01MB CapLen: 96 bytes
# of packets: 35636502 (26967.57MB)
AvgRate: 251.22Mbps stddev:69.09M
IP flow (unique src/dst pair) Information
# of flows: 2209493 (avg. 16.13 pkts/flow)
Top 10 big flow size (bytes/total in %):
11.3% 7.0% 3.5% 3.4% 2.9% 2.5% 1.8% 1.4% 1.4% 1.2%
IP address Information
# of IPv4 addresses: 1542741
Top 10 bandwidth usage (bytes/total in %):
15.5% 13.6% 12.0% 7.4% 6.5% 6.3% 5.0% 4.0% 3.7% 3.6%
# of IPv6 addresses: 11031
Top 10 bandwidth usage (bytes/total in %):
12.5% 10.3% 10.0% 9.2% 4.6% 4.2% 4.2% 3.1% 2.3% 2.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201301221400.pktlen.png)
detailed numbers
[ 32- 63]: 6895875
[ 64- 127]: 7877152
[ 128- 255]: 911801
[ 256- 511]: 1178607
[ 512- 1023]: 1320137
[ 1024- 2047]: 17452930
Protocol Breakdown
![[protocol breakdown chart]](201301221400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 35636502 (100.00%) 28277544003 (100.00%) 793.50
ip 34247585 ( 96.10%) 27090603566 ( 95.80%) 791.02
tcp 29436182 ( 82.60%) 25383073337 ( 89.76%) 862.31
http(s) 14303453 ( 40.14%) 17812328365 ( 62.99%) 1245.32
http(c) 8867302 ( 24.88%) 2739764223 ( 9.69%) 308.97
squid 179975 ( 0.51%) 68219118 ( 0.24%) 379.05
smtp 54537 ( 0.15%) 14275987 ( 0.05%) 261.77
ftp 3125 ( 0.01%) 229522 ( 0.00%) 73.45
pop3 6302 ( 0.02%) 2820954 ( 0.01%) 447.63
imap 2518 ( 0.01%) 394331 ( 0.00%) 156.60
telnet 122198 ( 0.34%) 10519984 ( 0.04%) 86.09
ssh 735904 ( 2.07%) 106220353 ( 0.38%) 144.34
dns 7630 ( 0.02%) 3761074 ( 0.01%) 492.93
bgp 519 ( 0.00%) 112230 ( 0.00%) 216.24
napster 31 ( 0.00%) 4034 ( 0.00%) 130.13
realaud 26 ( 0.00%) 2728 ( 0.00%) 104.92
rtsp 1 ( 0.00%) 60 ( 0.00%) 60.00
icecast 176813 ( 0.50%) 140707972 ( 0.50%) 795.80
hotline 13 ( 0.00%) 3302 ( 0.00%) 254.00
other 4975835 ( 13.96%) 4483709100 ( 15.86%) 901.10
udp 2761659 ( 7.75%) 1360887741 ( 4.81%) 492.78
dns 1044817 ( 2.93%) 466973464 ( 1.65%) 446.94
rip 1 ( 0.00%) 79 ( 0.00%) 79.00
realaud 24 ( 0.00%) 2320 ( 0.00%) 96.67
halflif 585 ( 0.00%) 35500 ( 0.00%) 60.68
starcra 76 ( 0.00%) 8501 ( 0.00%) 111.86
everque 2583 ( 0.01%) 1851603 ( 0.01%) 716.84
unreal 21 ( 0.00%) 2976 ( 0.00%) 141.71
quake 20 ( 0.00%) 1787 ( 0.00%) 89.35
cuseeme 1 ( 0.00%) 72 ( 0.00%) 72.00
other 1713275 ( 4.81%) 891739758 ( 3.15%) 520.49
icmp 1532435 ( 4.30%) 150021665 ( 0.53%) 97.90
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 22200 ( 0.06%) 7707184 ( 0.03%) 347.17
ip6 445902 ( 1.25%) 174270884 ( 0.62%) 390.83
other 49022 ( 0.14%) 14623485 ( 0.05%) 298.30
frag 218737 ( 0.61%) 245202202 ( 0.87%) 1120.99
ip6 1388917 ( 3.90%) 1186940437 ( 4.20%) 854.58
tcp6 1123947 ( 3.15%) 989102198 ( 3.50%) 880.03
http(s) 874571 ( 2.45%) 867767774 ( 3.07%) 992.22
http(c) 87819 ( 0.25%) 10921327 ( 0.04%) 124.36
smtp 952 ( 0.00%) 339341 ( 0.00%) 356.45
ftp 781 ( 0.00%) 69320 ( 0.00%) 88.76
imap 1388 ( 0.00%) 943476 ( 0.00%) 679.74
ssh 160 ( 0.00%) 19112 ( 0.00%) 119.45
dns 311 ( 0.00%) 76579 ( 0.00%) 246.23
bgp 101 ( 0.00%) 43455 ( 0.00%) 430.25
other 157864 ( 0.44%) 108921814 ( 0.39%) 689.97
udp6 134857 ( 0.38%) 70538096 ( 0.25%) 523.06
dns 67204 ( 0.19%) 20487382 ( 0.07%) 304.85
realaud 2 ( 0.00%) 224 ( 0.00%) 112.00
other 67651 ( 0.19%) 50050490 ( 0.18%) 739.83
icmp6 24311 ( 0.07%) 2797710 ( 0.01%) 115.08
ip6 85 ( 0.00%) 11580 ( 0.00%) 136.24
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 105687 ( 0.30%) 124486773 ( 0.44%) 1177.88
tcpdump file: 201301221400.dump.gz (816.19 MB)