Traffic Trace Info
DumpFile: 201302221400.dump
FileSize: 2064.02MB
Id: 201302221400
StartTime: Fri Feb 22 14:00:00 2013
EndTime: Fri Feb 22 14:15:01 2013
TotalTime: 900.64 seconds
TotalCapSize: 1629.51MB CapLen: 96 bytes
# of packets: 28475376 (21452.82MB)
AvgRate: 199.78Mbps stddev:57.69M
IP flow (unique src/dst pair) Information
# of flows: 806334 (avg. 35.31 pkts/flow)
Top 10 big flow size (bytes/total in %):
11.6% 6.6% 5.6% 3.4% 2.4% 2.4% 2.2% 1.6% 1.4% 1.2%
IP address Information
# of IPv4 addresses: 466432
Top 10 bandwidth usage (bytes/total in %):
26.1% 12.5% 12.5% 7.2% 6.1% 3.7% 3.7% 3.0% 2.9% 2.7%
# of IPv6 addresses: 9871
Top 10 bandwidth usage (bytes/total in %):
17.6% 8.9% 8.9% 8.2% 5.0% 5.0% 4.3% 3.1% 2.5% 2.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201302221400.pktlen.png)
detailed numbers
[ 32- 63]: 3606739
[ 64- 127]: 8169107
[ 128- 255]: 718702
[ 256- 511]: 849074
[ 512- 1023]: 1278784
[ 1024- 2047]: 13852970
Protocol Breakdown
![[protocol breakdown chart]](201302221400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 28475376 (100.00%) 22494912719 (100.00%) 789.98
ip 26736500 ( 93.89%) 20906607728 ( 92.94%) 781.95
tcp 22195019 ( 77.94%) 18826076193 ( 83.69%) 848.21
http(s) 11535608 ( 40.51%) 14698644967 ( 65.34%) 1274.20
http(c) 7094661 ( 24.92%) 1465194421 ( 6.51%) 206.52
squid 48032 ( 0.17%) 25587753 ( 0.11%) 532.72
smtp 48360 ( 0.17%) 19788092 ( 0.09%) 409.18
ftp 13364 ( 0.05%) 876827 ( 0.00%) 65.61
pop3 5976 ( 0.02%) 2883457 ( 0.01%) 482.51
imap 2247 ( 0.01%) 294991 ( 0.00%) 131.28
telnet 3580 ( 0.01%) 1718627 ( 0.01%) 480.06
ssh 60354 ( 0.21%) 11674219 ( 0.05%) 193.43
dns 1726 ( 0.01%) 290967 ( 0.00%) 168.58
bgp 555 ( 0.00%) 134432 ( 0.00%) 242.22
napster 1166 ( 0.00%) 75274 ( 0.00%) 64.56
realaud 23 ( 0.00%) 2946 ( 0.00%) 128.09
rtsp 4 ( 0.00%) 240 ( 0.00%) 60.00
icecast 130945 ( 0.46%) 124569444 ( 0.55%) 951.31
hotline 17 ( 0.00%) 2153 ( 0.00%) 126.65
other 3248401 ( 11.41%) 2474337383 ( 11.00%) 761.71
udp 3206850 ( 11.26%) 1616111599 ( 7.18%) 503.96
dns 1635070 ( 5.74%) 872755826 ( 3.88%) 533.77
realaud 6 ( 0.00%) 660 ( 0.00%) 110.00
halflif 34 ( 0.00%) 3181 ( 0.00%) 93.56
starcra 39 ( 0.00%) 7567 ( 0.00%) 194.03
everque 165 ( 0.00%) 29134 ( 0.00%) 176.57
unreal 12 ( 0.00%) 1841 ( 0.00%) 153.42
quake 58 ( 0.00%) 4678 ( 0.00%) 80.66
cuseeme 3 ( 0.00%) 256 ( 0.00%) 85.33
other 1561198 ( 5.48%) 736354155 ( 3.27%) 471.66
icmp 630323 ( 2.21%) 111456477 ( 0.50%) 176.82
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 16613 ( 0.06%) 10600026 ( 0.05%) 638.06
ip6 636081 ( 2.23%) 332366821 ( 1.48%) 522.52
other 51430 ( 0.18%) 9977452 ( 0.04%) 194.00
frag 460023 ( 1.62%) 536348260 ( 2.38%) 1165.92
ip6 1738876 ( 6.11%) 1588304991 ( 7.06%) 913.41
tcp6 1103028 ( 3.87%) 912506905 ( 4.06%) 827.27
http(s) 754164 ( 2.65%) 787701592 ( 3.50%) 1044.47
http(c) 204503 ( 0.72%) 24790255 ( 0.11%) 121.22
smtp 166 ( 0.00%) 94692 ( 0.00%) 570.43
ftp 124 ( 0.00%) 11728 ( 0.00%) 94.58
ssh 118 ( 0.00%) 21296 ( 0.00%) 180.47
dns 809 ( 0.00%) 578377 ( 0.00%) 714.93
bgp 102 ( 0.00%) 27126 ( 0.00%) 265.94
other 143042 ( 0.50%) 99281839 ( 0.44%) 694.07
udp6 93554 ( 0.33%) 43777063 ( 0.19%) 467.93
dns 64175 ( 0.23%) 22579913 ( 0.10%) 351.85
everque 1 ( 0.00%) 106 ( 0.00%) 106.00
other 29378 ( 0.10%) 21197044 ( 0.09%) 721.53
icmp6 17270 ( 0.06%) 1936828 ( 0.01%) 112.15
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 524993 ( 1.84%) 630079979 ( 2.80%) 1200.17
tcpdump file: 201302221400.dump.gz (639.69 MB)