Traffic Trace Info
DumpFile: 201304291400.dump
FileSize: 2782.90MB
Id: 201304291400
StartTime: Mon Apr 29 14:00:01 2013
EndTime: Mon Apr 29 14:15:00 2013
TotalTime: 899.13 seconds
TotalCapSize: -1966.25MB CapLen: 96 bytes
# of packets: 42804398 (18571.33MB)
AvgRate: 173.27Mbps stddev:42.41M
IP flow (unique src/dst pair) Information
# of flows: 18328394 (avg. 2.34 pkts/flow)
Top 10 big flow size (bytes/total in %):
26.2% 2.6% 2.4% 2.3% 1.7% 1.7% 1.7% 1.1% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 14448562
Top 10 bandwidth usage (bytes/total in %):
33.8% 28.0% 9.2% 6.4% 3.3% 2.7% 2.7% 2.6% 2.4% 2.2%
# of IPv6 addresses: 8368
Top 10 bandwidth usage (bytes/total in %):
40.0% 40.0% 8.8% 8.8% 7.5% 6.3% 6.2% 6.1% 5.3% 4.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201304291400.pktlen.png)
detailed numbers
[ 32- 63]: 23020158
[ 64- 127]: 6272245
[ 128- 255]: 629606
[ 256- 511]: 793383
[ 512- 1023]: 692536
[ 1024- 2047]: 11396470
Protocol Breakdown
![[protocol breakdown chart]](201304291400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 42804398 (100.00%) 19473454749 (100.00%) 454.94
ip 41933122 ( 97.96%) 18645502620 ( 95.75%) 444.65
tcp 19502477 ( 45.56%) 16229234872 ( 83.34%) 832.16
http(s) 10348191 ( 24.18%) 13296325512 ( 68.28%) 1284.89
http(c) 6978436 ( 16.30%) 2205632694 ( 11.33%) 316.06
squid 44557 ( 0.10%) 11801911 ( 0.06%) 264.87
smtp 63349 ( 0.15%) 9768000 ( 0.05%) 154.19
ftp 20494 ( 0.05%) 3878358 ( 0.02%) 189.24
pop3 31674 ( 0.07%) 12306820 ( 0.06%) 388.55
imap 4176 ( 0.01%) 1904537 ( 0.01%) 456.07
telnet 1454 ( 0.00%) 98144 ( 0.00%) 67.50
ssh 725191 ( 1.69%) 111941816 ( 0.57%) 154.36
dns 10797 ( 0.03%) 2758910 ( 0.01%) 255.53
bgp 506 ( 0.00%) 96020 ( 0.00%) 189.76
napster 7 ( 0.00%) 434 ( 0.00%) 62.00
realaud 25 ( 0.00%) 4550 ( 0.00%) 182.00
icecast 7614 ( 0.02%) 5858753 ( 0.03%) 769.47
hotline 3 ( 0.00%) 194 ( 0.00%) 64.67
other 1266003 ( 2.96%) 566858219 ( 2.91%) 447.75
udp 2156782 ( 5.04%) 1006067980 ( 5.17%) 466.47
dns 842597 ( 1.97%) 288074954 ( 1.48%) 341.89
realaud 1879 ( 0.00%) 120724 ( 0.00%) 64.25
halflif 27 ( 0.00%) 2208 ( 0.00%) 81.78
starcra 30 ( 0.00%) 2634 ( 0.00%) 87.80
everque 45 ( 0.00%) 8381 ( 0.00%) 186.24
unreal 11 ( 0.00%) 1143 ( 0.00%) 103.91
quake 14 ( 0.00%) 1575 ( 0.00%) 112.50
cuseeme 7 ( 0.00%) 568 ( 0.00%) 81.14
other 1311964 ( 3.07%) 717750332 ( 3.69%) 547.08
icmp 19992996 ( 46.71%) 1256490836 ( 6.45%) 62.85
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 15986 ( 0.04%) 14278004 ( 0.07%) 893.16
ip6 230623 ( 0.54%) 131903872 ( 0.68%) 571.95
other 34074 ( 0.08%) 7507896 ( 0.04%) 220.34
frag 92111 ( 0.22%) 95847336 ( 0.49%) 1040.56
ip6 871276 ( 2.04%) 827952129 ( 4.25%) 950.28
tcp6 785203 ( 1.83%) 796909695 ( 4.09%) 1014.91
http(s) 546702 ( 1.28%) 670022620 ( 3.44%) 1225.57
http(c) 107285 ( 0.25%) 9634232 ( 0.05%) 89.80
squid 71 ( 0.00%) 16254 ( 0.00%) 228.93
smtp 772 ( 0.00%) 243378 ( 0.00%) 315.26
ftp 1023 ( 0.00%) 98982 ( 0.00%) 96.76
ssh 70 ( 0.00%) 12250 ( 0.00%) 175.00
dns 361 ( 0.00%) 173349 ( 0.00%) 480.19
bgp 91 ( 0.00%) 17940 ( 0.00%) 197.14
other 128828 ( 0.30%) 116690690 ( 0.60%) 905.79
udp6 52577 ( 0.12%) 17391602 ( 0.09%) 330.78
dns 51741 ( 0.12%) 17252637 ( 0.09%) 333.44
cuseeme 1 ( 0.00%) 114 ( 0.00%) 114.00
other 835 ( 0.00%) 138851 ( 0.00%) 166.29
icmp6 23489 ( 0.05%) 2859771 ( 0.01%) 121.75
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 9977 ( 0.02%) 10786981 ( 0.06%) 1081.18
tcpdump file: 201304291400.dump.gz (880.93 MB)