Traffic Trace Info
DumpFile: 201305171400.dump
FileSize: 4452.36MB
Id: 201305171400
StartTime: Fri May 17 14:00:00 2013
EndTime: Fri May 17 14:15:01 2013
TotalTime: 900.13 seconds
TotalCapSize: -639.03MB CapLen: 96 bytes
# of packets: 65233293 (40918.62MB)
AvgRate: 381.33Mbps stddev:51.30M
IP flow (unique src/dst pair) Information
# of flows: 20541266 (avg. 3.18 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.3% 2.7% 2.6% 2.5% 2.2% 2.1% 1.0% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 16372518
Top 10 bandwidth usage (bytes/total in %):
11.8% 6.5% 5.8% 5.1% 4.2% 3.7% 3.5% 3.3% 3.2% 3.0%
# of IPv6 addresses: 10703
Top 10 bandwidth usage (bytes/total in %):
9.9% 8.7% 8.7% 5.7% 4.2% 4.0% 3.0% 2.2% 1.9% 1.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201305171400.pktlen.png)
detailed numbers
[ 32- 63]: 25787582
[ 64- 127]: 9564386
[ 128- 255]: 1124443
[ 256- 511]: 1177288
[ 512- 1023]: 1116683
[ 1024- 2047]: 26462911
Protocol Breakdown
![[protocol breakdown chart]](201305171400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 65233293 (100.00%) 42906282449 (100.00%) 657.74
ip 62248144 ( 95.42%) 39795791318 ( 92.75%) 639.31
tcp 37645010 ( 57.71%) 36884634178 ( 85.97%) 979.80
http(s) 22757076 ( 34.89%) 30356391572 ( 70.75%) 1333.93
http(c) 10276802 ( 15.75%) 2773462656 ( 6.46%) 269.88
squid 29834 ( 0.05%) 22657548 ( 0.05%) 759.45
smtp 91369 ( 0.14%) 24948674 ( 0.06%) 273.05
ftp 46264 ( 0.07%) 3439493 ( 0.01%) 74.34
pop3 8992 ( 0.01%) 7412898 ( 0.02%) 824.39
imap 4155 ( 0.01%) 676486 ( 0.00%) 162.81
telnet 1140 ( 0.00%) 76243 ( 0.00%) 66.88
ssh 67240 ( 0.10%) 22479145 ( 0.05%) 334.31
dns 3417 ( 0.01%) 1414060 ( 0.00%) 413.83
bgp 556 ( 0.00%) 135291 ( 0.00%) 243.33
napster 6 ( 0.00%) 531 ( 0.00%) 88.50
realaud 10 ( 0.00%) 1085 ( 0.00%) 108.50
icecast 24207 ( 0.04%) 21199167 ( 0.05%) 875.75
hotline 2 ( 0.00%) 124 ( 0.00%) 62.00
other 4333940 ( 6.64%) 3650339205 ( 8.51%) 842.27
udp 3093381 ( 4.74%) 1431996810 ( 3.34%) 462.92
dns 857494 ( 1.31%) 255564474 ( 0.60%) 298.04
rip 6 ( 0.00%) 372 ( 0.00%) 62.00
realaud 13 ( 0.00%) 1097 ( 0.00%) 84.38
halflif 12 ( 0.00%) 1299 ( 0.00%) 108.25
starcra 10 ( 0.00%) 1149 ( 0.00%) 114.90
everque 43 ( 0.00%) 6579 ( 0.00%) 153.00
unreal 55 ( 0.00%) 10609 ( 0.00%) 192.89
quake 80 ( 0.00%) 6739 ( 0.00%) 84.24
cuseeme 3 ( 0.00%) 217 ( 0.00%) 72.33
other 2235398 ( 3.43%) 1176303615 ( 2.74%) 526.22
icmp 21049394 ( 32.27%) 1310713097 ( 3.05%) 62.27
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 32078 ( 0.05%) 10155220 ( 0.02%) 316.58
ip6 395206 ( 0.61%) 151672431 ( 0.35%) 383.78
other 32890 ( 0.05%) 6600312 ( 0.02%) 200.68
frag 63830 ( 0.10%) 61622319 ( 0.14%) 965.41
ip6 2985149 ( 4.58%) 3110491131 ( 7.25%) 1041.99
tcp6 2846013 ( 4.36%) 3056552648 ( 7.12%) 1073.98
http(s) 2174257 ( 3.33%) 2696866048 ( 6.29%) 1240.36
http(c) 367461 ( 0.56%) 35574785 ( 0.08%) 96.81
smtp 91 ( 0.00%) 29189 ( 0.00%) 320.76
ftp 40 ( 0.00%) 3999 ( 0.00%) 99.97
ssh 191 ( 0.00%) 29177 ( 0.00%) 152.76
dns 988 ( 0.00%) 719962 ( 0.00%) 728.71
bgp 96 ( 0.00%) 20046 ( 0.00%) 208.81
other 302889 ( 0.46%) 323309442 ( 0.75%) 1067.42
udp6 80475 ( 0.12%) 24710726 ( 0.06%) 307.06
dns 79678 ( 0.12%) 24619540 ( 0.06%) 308.99
halflif 1 ( 0.00%) 103 ( 0.00%) 103.00
quake 1 ( 0.00%) 108 ( 0.00%) 108.00
other 795 ( 0.00%) 90975 ( 0.00%) 114.43
icmp6 35667 ( 0.05%) 4090435 ( 0.01%) 114.68
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 22963 ( 0.04%) 25133106 ( 0.06%) 1094.50
tcpdump file: 201305171400.dump.gz (1397.02 MB)