Traffic Trace Info
DumpFile: 201303201400.dump
FileSize: 2004.48MB
Id: 201303201400
StartTime: Wed Mar 20 14:00:01 2013
EndTime: Wed Mar 20 14:15:01 2013
TotalTime: 899.92 seconds
TotalCapSize: 1575.68MB CapLen: 96 bytes
# of packets: 28101440 (18287.35MB)
AvgRate: 170.36Mbps stddev:62.48M
IP flow (unique src/dst pair) Information
# of flows: 3363291 (avg. 8.36 pkts/flow)
Top 10 big flow size (bytes/total in %):
20.8% 4.8% 3.9% 3.7% 2.4% 2.1% 2.0% 1.9% 1.9% 1.8%
IP address Information
# of IPv4 addresses: 2554859
Top 10 bandwidth usage (bytes/total in %):
32.6% 23.2% 14.6% 7.0% 5.3% 4.3% 4.0% 4.0% 2.9% 2.8%
# of IPv6 addresses: 8791
Top 10 bandwidth usage (bytes/total in %):
17.4% 16.0% 11.1% 7.9% 5.9% 5.9% 5.0% 5.0% 4.0% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201303201400.pktlen.png)
detailed numbers
[ 32- 63]: 6990003
[ 64- 127]: 6970900
[ 128- 255]: 640713
[ 256- 511]: 534160
[ 512- 1023]: 1489000
[ 1024- 2047]: 11476664
Protocol Breakdown
![[protocol breakdown chart]](201303201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 28101440 (100.00%) 19175677405 (100.00%) 682.37
ip 26547869 ( 94.47%) 17692697457 ( 92.27%) 666.45
tcp 19366358 ( 68.92%) 15752775629 ( 82.15%) 813.41
http(s) 9760615 ( 34.73%) 12685203153 ( 66.15%) 1299.63
http(c) 7849544 ( 27.93%) 2192827185 ( 11.44%) 279.36
squid 99333 ( 0.35%) 62038307 ( 0.32%) 624.55
smtp 78601 ( 0.28%) 32662366 ( 0.17%) 415.55
ftp 28070 ( 0.10%) 16359202 ( 0.09%) 582.80
pop3 2181 ( 0.01%) 317765 ( 0.00%) 145.70
imap 2869 ( 0.01%) 320888 ( 0.00%) 111.85
telnet 3448 ( 0.01%) 1715665 ( 0.01%) 497.58
ssh 134202 ( 0.48%) 11009400 ( 0.06%) 82.04
dns 3999 ( 0.01%) 2535818 ( 0.01%) 634.11
bgp 511 ( 0.00%) 112628 ( 0.00%) 220.41
napster 29 ( 0.00%) 4710 ( 0.00%) 162.41
realaud 4 ( 0.00%) 244 ( 0.00%) 61.00
icecast 10597 ( 0.04%) 6302578 ( 0.03%) 594.75
hotline 11 ( 0.00%) 808 ( 0.00%) 73.45
other 1392344 ( 4.95%) 741364912 ( 3.87%) 532.46
udp 3022465 ( 10.76%) 1492666199 ( 7.78%) 493.86
dns 935755 ( 3.33%) 397715808 ( 2.07%) 425.02
realaud 22 ( 0.00%) 1809 ( 0.00%) 82.23
halflif 6 ( 0.00%) 499 ( 0.00%) 83.17
starcra 29 ( 0.00%) 5811 ( 0.00%) 200.38
everque 45 ( 0.00%) 8565 ( 0.00%) 190.33
unreal 25 ( 0.00%) 2780 ( 0.00%) 111.20
quake 11 ( 0.00%) 1531 ( 0.00%) 139.18
cuseeme 3 ( 0.00%) 269 ( 0.00%) 89.67
other 2085314 ( 7.42%) 1093355067 ( 5.70%) 524.31
icmp 3601824 ( 12.82%) 277475218 ( 1.45%) 77.04
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 26465 ( 0.09%) 9742102 ( 0.05%) 368.11
ip6 481394 ( 1.71%) 151696600 ( 0.79%) 315.12
other 49179 ( 0.18%) 8322549 ( 0.04%) 169.23
frag 165836 ( 0.59%) 227648831 ( 1.19%) 1372.73
ip6 1553571 ( 5.53%) 1482979948 ( 7.73%) 954.56
tcp6 1427659 ( 5.08%) 1443226006 ( 7.53%) 1010.90
http(s) 1027663 ( 3.66%) 1179485021 ( 6.15%) 1147.74
http(c) 169409 ( 0.60%) 16983351 ( 0.09%) 100.25
smtp 188 ( 0.00%) 76402 ( 0.00%) 406.39
ftp 91 ( 0.00%) 8085 ( 0.00%) 88.85
ssh 2 ( 0.00%) 160 ( 0.00%) 80.00
dns 361 ( 0.00%) 112905 ( 0.00%) 312.76
bgp 100 ( 0.00%) 27199 ( 0.00%) 271.99
other 229845 ( 0.82%) 246532883 ( 1.29%) 1072.60
udp6 96540 ( 0.34%) 25288697 ( 0.13%) 261.95
dns 58111 ( 0.21%) 20747703 ( 0.11%) 357.04
realaud 1 ( 0.00%) 109 ( 0.00%) 109.00
halflif 1 ( 0.00%) 106 ( 0.00%) 106.00
other 38427 ( 0.14%) 4540779 ( 0.02%) 118.17
icmp6 17475 ( 0.06%) 2002386 ( 0.01%) 114.59
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 11867 ( 0.04%) 12458779 ( 0.06%) 1049.87
tcpdump file: 201303201400.dump.gz (591.00 MB)