Traffic Trace Info
DumpFile: 201305231400.dump
FileSize: 3990.72MB
Id: 201305231400
StartTime: Thu May 23 14:00:00 2013
EndTime: Thu May 23 14:15:00 2013
TotalTime: 900.06 seconds
TotalCapSize: -1001.38MB CapLen: 96 bytes
# of packets: 58725249 (31863.64MB)
AvgRate: 296.97Mbps stddev:45.42M
IP flow (unique src/dst pair) Information
# of flows: 20252750 (avg. 2.90 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.1% 5.9% 2.5% 1.4% 1.3% 1.3% 1.1% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 16126955
Top 10 bandwidth usage (bytes/total in %):
11.4% 10.1% 6.5% 6.4% 5.7% 4.5% 3.6% 3.1% 2.7% 2.7%
# of IPv6 addresses: 11630
Top 10 bandwidth usage (bytes/total in %):
11.9% 8.8% 5.7% 4.5% 3.2% 3.2% 3.1% 2.7% 2.6% 2.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201305231400.pktlen.png)
detailed numbers
[ 32- 63]: 24111179
[ 64- 127]: 10592162
[ 128- 255]: 952001
[ 256- 511]: 1692209
[ 512- 1023]: 1179999
[ 1024- 2047]: 20197699
Protocol Breakdown
![[protocol breakdown chart]](201305231400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 58725249 (100.00%) 33411448269 (100.00%) 568.95
ip 56703123 ( 96.56%) 31849555706 ( 95.33%) 561.69
tcp 32974113 ( 56.15%) 29112186940 ( 87.13%) 882.88
http(s) 17094971 ( 29.11%) 21606242389 ( 64.67%) 1263.89
http(c) 10641252 ( 18.12%) 3656515072 ( 10.94%) 343.62
squid 80022 ( 0.14%) 14346439 ( 0.04%) 179.28
smtp 80743 ( 0.14%) 30394755 ( 0.09%) 376.44
nntp 9 ( 0.00%) 540 ( 0.00%) 60.00
ftp 28780 ( 0.05%) 1890286 ( 0.01%) 65.68
pop3 8532 ( 0.01%) 5956271 ( 0.02%) 698.11
imap 7985 ( 0.01%) 6058013 ( 0.02%) 758.67
telnet 1728 ( 0.00%) 612538 ( 0.00%) 354.48
ssh 317119 ( 0.54%) 40259251 ( 0.12%) 126.95
dns 3091 ( 0.01%) 387462 ( 0.00%) 125.35
bgp 1095 ( 0.00%) 649004 ( 0.00%) 592.70
napster 40 ( 0.00%) 4849 ( 0.00%) 121.22
realaud 96 ( 0.00%) 11462 ( 0.00%) 119.40
rtsp 4105 ( 0.01%) 5796852 ( 0.02%) 1412.14
icecast 138427 ( 0.24%) 132464842 ( 0.40%) 956.93
hotline 5 ( 0.00%) 306 ( 0.00%) 61.20
other 4566041 ( 7.78%) 3610592289 ( 10.81%) 790.75
udp 2672556 ( 4.55%) 1260595885 ( 3.77%) 471.68
dns 1141733 ( 1.94%) 463227471 ( 1.39%) 405.72
rip 26 ( 0.00%) 1716 ( 0.00%) 66.00
realaud 935 ( 0.00%) 673849 ( 0.00%) 720.69
halflif 1391 ( 0.00%) 164467 ( 0.00%) 118.24
starcra 61 ( 0.00%) 11877 ( 0.00%) 194.70
everque 127 ( 0.00%) 13683 ( 0.00%) 107.74
unreal 16 ( 0.00%) 1660 ( 0.00%) 103.75
quake 57 ( 0.00%) 11344 ( 0.00%) 199.02
cuseeme 2 ( 0.00%) 190 ( 0.00%) 95.00
other 1521546 ( 2.59%) 791341308 ( 2.37%) 520.09
icmp 20646055 ( 35.16%) 1302372040 ( 3.90%) 63.08
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 6549 ( 0.01%) 3953466 ( 0.01%) 603.67
ip6 370315 ( 0.63%) 163929709 ( 0.49%) 442.68
other 33350 ( 0.06%) 6498396 ( 0.02%) 194.85
frag 225445 ( 0.38%) 251386819 ( 0.75%) 1115.07
ip6 2022126 ( 3.44%) 1561892563 ( 4.67%) 772.40
tcp6 1913206 ( 3.26%) 1533403244 ( 4.59%) 801.48
http(s) 1341301 ( 2.28%) 1463798457 ( 4.38%) 1091.33
http(c) 531891 ( 0.91%) 49290964 ( 0.15%) 92.67
smtp 264 ( 0.00%) 82330 ( 0.00%) 311.86
ftp 190 ( 0.00%) 22087 ( 0.00%) 116.25
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 777 ( 0.00%) 568845 ( 0.00%) 732.10
bgp 95 ( 0.00%) 31547 ( 0.00%) 332.07
other 38616 ( 0.07%) 19596564 ( 0.06%) 507.47
udp6 79396 ( 0.14%) 22992248 ( 0.07%) 289.59
dns 77658 ( 0.13%) 22733054 ( 0.07%) 292.73
other 1738 ( 0.00%) 259194 ( 0.00%) 149.13
icmp6 27112 ( 0.05%) 3016695 ( 0.01%) 111.27
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 2381 ( 0.00%) 2476160 ( 0.01%) 1039.97
tcpdump file: 201305231400.dump.gz (1283.77 MB)