Traffic Trace Info
DumpFile: 201301291400.dump
FileSize: 2596.13MB
Id: 201301291400
StartTime: Tue Jan 29 14:00:00 2013
EndTime: Tue Jan 29 14:15:00 2013
TotalTime: 899.64 seconds
TotalCapSize: 1999.44MB CapLen: 96 bytes
# of packets: 39104509 (20753.68MB)
AvgRate: 193.53Mbps stddev:53.24M
IP flow (unique src/dst pair) Information
# of flows: 15402147 (avg. 2.54 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.9% 4.6% 4.5% 3.9% 2.6% 2.1% 2.0% 1.5% 1.5% 1.1%
IP address Information
# of IPv4 addresses: 11867396
Top 10 bandwidth usage (bytes/total in %):
9.6% 7.9% 7.1% 5.4% 5.2% 4.9% 4.9% 4.9% 4.9% 4.8%
# of IPv6 addresses: 10540
Top 10 bandwidth usage (bytes/total in %):
4.8% 4.8% 4.0% 3.8% 3.5% 3.4% 3.3% 3.2% 3.2% 3.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201301291400.pktlen.png)
detailed numbers
[ 32- 63]: 18161278
[ 64- 127]: 5619494
[ 128- 255]: 742854
[ 256- 511]: 606123
[ 512- 1023]: 770101
[ 1024- 2047]: 13204659
Protocol Breakdown
![[protocol breakdown chart]](201301291400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 39104509 (100.00%) 21761811377 (100.00%) 556.50
ip 37603160 ( 96.16%) 20451488811 ( 93.98%) 543.88
tcp 17922060 ( 45.83%) 17759835024 ( 81.61%) 990.95
http(s) 12119731 ( 30.99%) 15339106225 ( 70.49%) 1265.63
http(c) 3708271 ( 9.48%) 1074540542 ( 4.94%) 289.77
squid 81709 ( 0.21%) 70852336 ( 0.33%) 867.13
smtp 70468 ( 0.18%) 33303479 ( 0.15%) 472.60
nntp 94 ( 0.00%) 5640 ( 0.00%) 60.00
ftp 4311 ( 0.01%) 299504 ( 0.00%) 69.47
pop3 3736 ( 0.01%) 1188416 ( 0.01%) 318.10
imap 2894 ( 0.01%) 285108 ( 0.00%) 98.52
telnet 61389 ( 0.16%) 6035011 ( 0.03%) 98.31
ssh 112964 ( 0.29%) 48779524 ( 0.22%) 431.81
dns 9296 ( 0.02%) 3752649 ( 0.02%) 403.68
bgp 533 ( 0.00%) 118789 ( 0.00%) 222.87
napster 4 ( 0.00%) 668 ( 0.00%) 167.00
rtsp 4 ( 0.00%) 240 ( 0.00%) 60.00
icecast 54575 ( 0.14%) 46640225 ( 0.21%) 854.61
hotline 12 ( 0.00%) 1963 ( 0.00%) 163.58
other 1692065 ( 4.33%) 1134924325 ( 5.22%) 670.73
udp 2161563 ( 5.53%) 1138010584 ( 5.23%) 526.48
dns 751171 ( 1.92%) 339090237 ( 1.56%) 451.42
realaud 24 ( 0.00%) 1930 ( 0.00%) 80.42
halflif 7 ( 0.00%) 618 ( 0.00%) 88.29
starcra 3 ( 0.00%) 343 ( 0.00%) 114.33
everque 6868 ( 0.02%) 6281567 ( 0.03%) 914.61
unreal 42 ( 0.00%) 23377 ( 0.00%) 556.60
quake 34 ( 0.00%) 2965 ( 0.00%) 87.21
cuseeme 3 ( 0.00%) 320 ( 0.00%) 106.67
other 1369865 ( 3.50%) 789508342 ( 3.63%) 576.34
icmp 16658983 ( 42.60%) 1049007641 ( 4.82%) 62.97
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 178461 ( 0.46%) 153661642 ( 0.71%) 861.04
ip6 631530 ( 1.61%) 336558535 ( 1.55%) 532.93
other 50379 ( 0.13%) 14396225 ( 0.07%) 285.76
frag 231500 ( 0.59%) 225598290 ( 1.04%) 974.51
ip6 1501349 ( 3.84%) 1310322566 ( 6.02%) 872.76
tcp6 1094929 ( 2.80%) 954148966 ( 4.38%) 871.43
http(s) 835710 ( 2.14%) 789295760 ( 3.63%) 944.46
http(c) 97778 ( 0.25%) 10439066 ( 0.05%) 106.76
smtp 308 ( 0.00%) 191992 ( 0.00%) 623.35
ftp 66 ( 0.00%) 5876 ( 0.00%) 89.03
ssh 235 ( 0.00%) 165166 ( 0.00%) 702.83
dns 333 ( 0.00%) 79744 ( 0.00%) 239.47
bgp 110 ( 0.00%) 47385 ( 0.00%) 430.77
other 160389 ( 0.41%) 153923977 ( 0.71%) 959.69
udp6 190249 ( 0.49%) 126170170 ( 0.58%) 663.18
dns 65093 ( 0.17%) 19728500 ( 0.09%) 303.08
realaud 1 ( 0.00%) 104 ( 0.00%) 104.00
everque 1 ( 0.00%) 113 ( 0.00%) 113.00
other 125154 ( 0.32%) 106441453 ( 0.49%) 850.48
icmp6 21058 ( 0.05%) 2428085 ( 0.01%) 115.30
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 195082 ( 0.50%) 227571129 ( 1.05%) 1166.54
tcpdump file: 201301291400.dump.gz (845.58 MB)