Traffic Trace Info
DumpFile: 201304161400.dump
FileSize: 4482.75MB
Id: 201304161400
StartTime: Tue Apr 16 14:00:01 2013
EndTime: Tue Apr 16 14:15:01 2013
TotalTime: 899.95 seconds
TotalCapSize: -603.68MB CapLen: 96 bytes
# of packets: 64908232 (39418.41MB)
AvgRate: 367.48Mbps stddev:63.43M
IP flow (unique src/dst pair) Information
# of flows: 18455654 (avg. 3.52 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.4% 3.4% 1.6% 1.6% 1.2% 1.2% 1.2% 1.1% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 14190863
Top 10 bandwidth usage (bytes/total in %):
10.6% 8.6% 8.1% 7.9% 6.1% 4.8% 3.8% 3.8% 3.0% 2.8%
# of IPv6 addresses: 11903
Top 10 bandwidth usage (bytes/total in %):
6.0% 5.8% 4.9% 4.9% 4.9% 3.8% 3.8% 3.5% 3.2% 3.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201304161400.pktlen.png)
detailed numbers
[ 32- 63]: 24762146
[ 64- 127]: 11331077
[ 128- 255]: 966686
[ 256- 511]: 1408232
[ 512- 1023]: 1152348
[ 1024- 2047]: 25287743
Protocol Breakdown
![[protocol breakdown chart]](201304161400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 64908232 (100.00%) 41333200468 (100.00%) 636.79
ip 61142856 ( 94.20%) 37762467094 ( 91.36%) 617.61
tcp 38827515 ( 59.82%) 35509708264 ( 85.91%) 914.55
http(s) 22979034 ( 35.40%) 30414985748 ( 73.58%) 1323.60
http(c) 13661613 ( 21.05%) 4038151974 ( 9.77%) 295.58
squid 45900 ( 0.07%) 31964960 ( 0.08%) 696.40
smtp 64447 ( 0.10%) 12075727 ( 0.03%) 187.37
ftp 16938 ( 0.03%) 3772890 ( 0.01%) 222.75
pop3 4032 ( 0.01%) 2416378 ( 0.01%) 599.30
imap 2438 ( 0.00%) 320820 ( 0.00%) 131.59
telnet 2475 ( 0.00%) 1653773 ( 0.00%) 668.19
ssh 291923 ( 0.45%) 39797333 ( 0.10%) 136.33
dns 3954 ( 0.01%) 2156041 ( 0.01%) 545.28
bgp 538 ( 0.00%) 119995 ( 0.00%) 223.04
napster 21 ( 0.00%) 2214 ( 0.00%) 105.43
realaud 235 ( 0.00%) 38722 ( 0.00%) 164.77
rtsp 58460 ( 0.09%) 86634349 ( 0.21%) 1481.94
icecast 45835 ( 0.07%) 38757564 ( 0.09%) 845.59
hotline 11 ( 0.00%) 1181 ( 0.00%) 107.36
other 1649661 ( 2.54%) 836858595 ( 2.02%) 507.29
udp 2118931 ( 3.26%) 605578012 ( 1.47%) 285.79
dns 897814 ( 1.38%) 229465346 ( 0.56%) 255.58
rip 15 ( 0.00%) 1050 ( 0.00%) 70.00
realaud 12 ( 0.00%) 1567 ( 0.00%) 130.58
halflif 323 ( 0.00%) 67192 ( 0.00%) 208.02
starcra 32 ( 0.00%) 2995 ( 0.00%) 93.59
everque 5628 ( 0.01%) 5331783 ( 0.01%) 947.37
unreal 44 ( 0.00%) 4767 ( 0.00%) 108.34
quake 29 ( 0.00%) 2216 ( 0.00%) 76.41
cuseeme 2 ( 0.00%) 168 ( 0.00%) 84.00
other 1213571 ( 1.87%) 370221807 ( 0.90%) 305.07
icmp 19418570 ( 29.92%) 1220385842 ( 2.95%) 62.85
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 42098 ( 0.06%) 8877020 ( 0.02%) 210.87
ip6 666409 ( 1.03%) 407313989 ( 0.99%) 611.21
other 69148 ( 0.11%) 10584697 ( 0.03%) 153.07
frag 9785 ( 0.02%) 9713421 ( 0.02%) 992.68
ip6 3765374 ( 5.80%) 3570733254 ( 8.64%) 948.31
tcp6 3562246 ( 5.49%) 3463605326 ( 8.38%) 972.31
http(s) 2561665 ( 3.95%) 3047369514 ( 7.37%) 1189.61
http(c) 553581 ( 0.85%) 47561728 ( 0.12%) 85.92
smtp 409 ( 0.00%) 118817 ( 0.00%) 290.51
ftp 2182 ( 0.00%) 203315 ( 0.00%) 93.18
dns 174 ( 0.00%) 66007 ( 0.00%) 379.35
bgp 92 ( 0.00%) 20536 ( 0.00%) 223.22
other 444143 ( 0.68%) 368265409 ( 0.89%) 829.16
udp6 175732 ( 0.27%) 99706081 ( 0.24%) 567.38
dns 79616 ( 0.12%) 23075779 ( 0.06%) 289.84
everque 1 ( 0.00%) 102 ( 0.00%) 102.00
other 96115 ( 0.15%) 76630200 ( 0.19%) 797.28
icmp6 22366 ( 0.03%) 2324854 ( 0.01%) 103.95
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 4999 ( 0.01%) 5092777 ( 0.01%) 1018.76
tcpdump file: 201304161400.dump.gz (1391.39 MB)