Traffic Trace Info
DumpFile: 201304021400.dump
FileSize: 4137.04MB
Id: 201304021400
StartTime: Tue Apr 2 14:00:01 2013
EndTime: Tue Apr 2 14:15:00 2013
TotalTime: 899.55 seconds
TotalCapSize: -872.99MB CapLen: 96 bytes
# of packets: 59901286 (38522.56MB)
AvgRate: 359.20Mbps stddev:80.10M
IP flow (unique src/dst pair) Information
# of flows: 11268264 (avg. 5.32 pkts/flow)
Top 10 big flow size (bytes/total in %):
16.4% 8.7% 4.3% 2.5% 1.5% 1.4% 1.3% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 8578494
Top 10 bandwidth usage (bytes/total in %):
17.4% 17.2% 12.0% 9.2% 7.9% 7.1% 5.2% 4.6% 4.6% 2.6%
# of IPv6 addresses: 10506
Top 10 bandwidth usage (bytes/total in %):
18.4% 9.6% 5.9% 5.8% 4.3% 3.7% 3.4% 3.1% 3.1% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201304021400.pktlen.png)
detailed numbers
[ 32- 63]: 20838594
[ 64- 127]: 9927210
[ 128- 255]: 712549
[ 256- 511]: 1727590
[ 512- 1023]: 1989121
[ 1024- 2047]: 24706222
Protocol Breakdown
![[protocol breakdown chart]](201304021400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 59901286 (100.00%) 40393833448 (100.00%) 674.34
ip 57744666 ( 96.40%) 38809367799 ( 96.08%) 672.09
tcp 37252130 ( 62.19%) 35092579796 ( 86.88%) 942.03
http(s) 17359987 ( 28.98%) 22680834296 ( 56.15%) 1306.50
http(c) 11794897 ( 19.69%) 3382776564 ( 8.37%) 286.80
squid 37437 ( 0.06%) 19855731 ( 0.05%) 530.38
smtp 314214 ( 0.52%) 394853341 ( 0.98%) 1256.64
ftp 55948 ( 0.09%) 30799915 ( 0.08%) 550.51
pop3 5195 ( 0.01%) 1078088 ( 0.00%) 207.52
imap 3097 ( 0.01%) 1198754 ( 0.00%) 387.07
telnet 51195 ( 0.09%) 3780049 ( 0.01%) 73.84
ssh 131100 ( 0.22%) 11879351 ( 0.03%) 90.61
dns 4869 ( 0.01%) 2406249 ( 0.01%) 494.20
bgp 531 ( 0.00%) 118816 ( 0.00%) 223.76
napster 5 ( 0.00%) 678 ( 0.00%) 135.60
realaud 85 ( 0.00%) 13050 ( 0.00%) 153.53
rtsp 21084 ( 0.04%) 1401827 ( 0.00%) 66.49
icecast 18295 ( 0.03%) 15955714 ( 0.04%) 872.14
hotline 21 ( 0.00%) 1869 ( 0.00%) 89.00
other 7454170 ( 12.44%) 8545625504 ( 21.16%) 1146.42
udp 3166981 ( 5.29%) 1622371840 ( 4.02%) 512.28
dns 1238999 ( 2.07%) 583312769 ( 1.44%) 470.79
rip 1 ( 0.00%) 90 ( 0.00%) 90.00
realaud 4 ( 0.00%) 427 ( 0.00%) 106.75
halflif 109 ( 0.00%) 8520 ( 0.00%) 78.17
starcra 43 ( 0.00%) 4283 ( 0.00%) 99.60
everque 121 ( 0.00%) 14413 ( 0.00%) 119.12
unreal 11 ( 0.00%) 1995 ( 0.00%) 181.36
quake 24 ( 0.00%) 2360 ( 0.00%) 98.33
cuseeme 8 ( 0.00%) 902 ( 0.00%) 112.75
other 1927160 ( 3.22%) 1038744167 ( 2.57%) 539.00
icmp 15746651 ( 26.29%) 1010509012 ( 2.50%) 64.17
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 48017 ( 0.08%) 18993146 ( 0.05%) 395.55
ip6 1165156 ( 1.95%) 1026949887 ( 2.54%) 881.38
other 365547 ( 0.61%) 37944958 ( 0.09%) 103.80
frag 393876 ( 0.66%) 408796202 ( 1.01%) 1037.88
ip6 2156620 ( 3.60%) 1584465649 ( 3.92%) 734.70
tcp6 2039844 ( 3.41%) 1549581009 ( 3.84%) 759.66
http(s) 1291943 ( 2.16%) 1423754372 ( 3.52%) 1102.03
http(c) 672771 ( 1.12%) 65047474 ( 0.16%) 96.69
smtp 6031 ( 0.01%) 6598451 ( 0.02%) 1094.09
ftp 25 ( 0.00%) 2209 ( 0.00%) 88.36
ssh 2 ( 0.00%) 160 ( 0.00%) 80.00
dns 715 ( 0.00%) 530571 ( 0.00%) 742.06
bgp 93 ( 0.00%) 19054 ( 0.00%) 204.88
other 68264 ( 0.11%) 53628718 ( 0.13%) 785.61
udp6 71538 ( 0.12%) 24649350 ( 0.06%) 344.56
dns 66055 ( 0.11%) 22032447 ( 0.05%) 333.55
halflif 2 ( 0.00%) 201 ( 0.00%) 100.50
quake 1 ( 0.00%) 113 ( 0.00%) 113.00
other 5480 ( 0.01%) 2616589 ( 0.01%) 477.48
icmp6 39367 ( 0.07%) 4467057 ( 0.01%) 113.47
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 5840 ( 0.01%) 5764017 ( 0.01%) 986.99
tcpdump file: 201304021400.dump.gz (1286.56 MB)