Traffic Trace Info
DumpFile: 201305281400.dump
FileSize: 3874.05MB
Id: 201305281400
StartTime: Tue May 28 14:00:00 2013
EndTime: Tue May 28 14:15:01 2013
TotalTime: 900.57 seconds
TotalCapSize: -1105.29MB CapLen: 96 bytes
# of packets: 57890181 (30150.30MB)
AvgRate: 280.86Mbps stddev:62.08M
IP flow (unique src/dst pair) Information
# of flows: 20335430 (avg. 2.85 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.2% 2.4% 2.3% 2.2% 2.2% 1.3% 1.3% 1.2% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 16216570
Top 10 bandwidth usage (bytes/total in %):
9.4% 5.2% 5.0% 4.8% 4.4% 4.3% 3.8% 2.8% 2.8% 2.6%
# of IPv6 addresses: 10809
Top 10 bandwidth usage (bytes/total in %):
12.9% 12.9% 6.2% 4.7% 4.6% 4.1% 3.2% 2.7% 2.4% 2.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201305281400.pktlen.png)
detailed numbers
[ 32- 63]: 24875053
[ 64- 127]: 10255539
[ 128- 255]: 1270363
[ 256- 511]: 1623445
[ 512- 1023]: 1197774
[ 1024- 2047]: 18668007
Protocol Breakdown
![[protocol breakdown chart]](201305281400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 57890181 (100.00%) 31614881683 (100.00%) 546.12
ip 54612796 ( 94.34%) 28446708266 ( 89.98%) 520.88
tcp 28069265 ( 48.49%) 25682818535 ( 81.24%) 914.98
http(s) 16101703 ( 27.81%) 20597163331 ( 65.15%) 1279.19
http(c) 8853034 ( 15.29%) 2701192229 ( 8.54%) 305.11
squid 22005 ( 0.04%) 2017590 ( 0.01%) 91.69
smtp 78936 ( 0.14%) 23607031 ( 0.07%) 299.07
nntp 4 ( 0.00%) 240 ( 0.00%) 60.00
ftp 30139 ( 0.05%) 2049298 ( 0.01%) 67.99
pop3 6774 ( 0.01%) 3725308 ( 0.01%) 549.94
imap 3132 ( 0.01%) 515246 ( 0.00%) 164.51
telnet 1681 ( 0.00%) 111133 ( 0.00%) 66.11
ssh 29682 ( 0.05%) 6683477 ( 0.02%) 225.17
dns 6404 ( 0.01%) 3769261 ( 0.01%) 588.58
bgp 658 ( 0.00%) 198615 ( 0.00%) 301.85
napster 8 ( 0.00%) 1023 ( 0.00%) 127.88
realaud 26 ( 0.00%) 2943 ( 0.00%) 113.19
icecast 156445 ( 0.27%) 156733071 ( 0.50%) 1001.84
hotline 16 ( 0.00%) 3485 ( 0.00%) 217.81
other 2778618 ( 4.80%) 2185045254 ( 6.91%) 786.38
udp 4201398 ( 7.26%) 1023083624 ( 3.24%) 243.51
dns 836024 ( 1.44%) 290625422 ( 0.92%) 347.63
rip 27 ( 0.00%) 2149 ( 0.00%) 79.59
realaud 26 ( 0.00%) 2687 ( 0.00%) 103.35
halflif 7 ( 0.00%) 914 ( 0.00%) 130.57
starcra 30 ( 0.00%) 3691 ( 0.00%) 123.03
everque 36 ( 0.00%) 6268 ( 0.00%) 174.11
unreal 41 ( 0.00%) 6335 ( 0.00%) 154.51
quake 147 ( 0.00%) 11256 ( 0.00%) 76.57
cuseeme 9 ( 0.00%) 1377 ( 0.00%) 153.00
other 3361088 ( 5.81%) 731838118 ( 2.31%) 217.74
icmp 21697202 ( 37.48%) 1374191831 ( 4.35%) 63.33
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 14777 ( 0.03%) 5452946 ( 0.02%) 369.02
ip6 590028 ( 1.02%) 352734781 ( 1.12%) 597.83
other 39942 ( 0.07%) 8407389 ( 0.03%) 210.49
frag 105483 ( 0.18%) 107133131 ( 0.34%) 1015.64
ip6 3277383 ( 5.66%) 3168173297 ( 10.02%) 966.68
tcp6 3163726 ( 5.47%) 3136185640 ( 9.92%) 991.29
http(s) 2331368 ( 4.03%) 3061483128 ( 9.68%) 1313.17
http(c) 402618 ( 0.70%) 35243997 ( 0.11%) 87.54
smtp 156 ( 0.00%) 64558 ( 0.00%) 413.83
ftp 142 ( 0.00%) 14279 ( 0.00%) 100.56
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 555 ( 0.00%) 278203 ( 0.00%) 501.27
bgp 101 ( 0.00%) 25725 ( 0.00%) 254.70
other 428714 ( 0.74%) 39063300 ( 0.12%) 91.12
udp6 81277 ( 0.14%) 23134556 ( 0.07%) 284.64
dns 79206 ( 0.14%) 22904106 ( 0.07%) 289.17
everque 1 ( 0.00%) 110 ( 0.00%) 110.00
quake 1 ( 0.00%) 113 ( 0.00%) 113.00
other 2069 ( 0.00%) 230227 ( 0.00%) 111.27
icmp6 27062 ( 0.05%) 3225821 ( 0.01%) 119.20
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 5288 ( 0.01%) 5623200 ( 0.02%) 1063.39
tcpdump file: 201305281400.dump.gz (1235.54 MB)