Traffic Trace Info
DumpFile: 201307281400.dump
FileSize: 2337.46MB
Id: 201307281400
StartTime: Sun Jul 28 14:00:00 2013
EndTime: Sun Jul 28 14:15:01 2013
TotalTime: 900.14 seconds
TotalCapSize: 1782.13MB CapLen: 96 bytes
# of packets: 36393614 (13982.88MB)
AvgRate: 130.31Mbps stddev:35.30M
IP flow (unique src/dst pair) Information
# of flows: 16928085 (avg. 2.15 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.3% 2.9% 1.9% 1.9% 1.8% 1.4% 1.4% 1.3% 1.3% 1.2%
IP address Information
# of IPv4 addresses: 13585420
Top 10 bandwidth usage (bytes/total in %):
24.9% 7.3% 6.7% 5.6% 4.5% 3.8% 3.6% 3.2% 3.2% 3.2%
# of IPv6 addresses: 9948
Top 10 bandwidth usage (bytes/total in %):
19.5% 19.0% 17.9% 9.8% 9.5% 8.8% 5.2% 5.2% 5.2% 5.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201307281400.pktlen.png)
detailed numbers
[ 32- 63]: 19997961
[ 64- 127]: 6044939
[ 128- 255]: 889063
[ 256- 511]: 531098
[ 512- 1023]: 528327
[ 1024- 2047]: 8402226
Protocol Breakdown
![[protocol breakdown chart]](201307281400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36393614 (100.00%) 14662109043 (100.00%) 402.88
ip 35569741 ( 97.74%) 13903571360 ( 94.83%) 390.88
tcp 13026765 ( 35.79%) 10867448209 ( 74.12%) 834.24
http(s) 7097910 ( 19.50%) 8814344411 ( 60.12%) 1241.82
http(c) 4163570 ( 11.44%) 1347436342 ( 9.19%) 323.63
squid 157055 ( 0.43%) 22347005 ( 0.15%) 142.29
smtp 61851 ( 0.17%) 11173511 ( 0.08%) 180.65
ftp 17750 ( 0.05%) 1157209 ( 0.01%) 65.19
pop3 2040 ( 0.01%) 807903 ( 0.01%) 396.03
imap 1087 ( 0.00%) 117597 ( 0.00%) 108.18
telnet 2940 ( 0.01%) 1675301 ( 0.01%) 569.83
ssh 120702 ( 0.33%) 9909583 ( 0.07%) 82.10
dns 6079 ( 0.02%) 3717104 ( 0.03%) 611.47
bgp 532 ( 0.00%) 113905 ( 0.00%) 214.11
realaud 19 ( 0.00%) 2383 ( 0.00%) 125.42
rtsp 56286 ( 0.15%) 60282371 ( 0.41%) 1071.00
icecast 22730 ( 0.06%) 6863492 ( 0.05%) 301.96
hotline 13 ( 0.00%) 818 ( 0.00%) 62.92
other 1316201 ( 3.62%) 587499274 ( 4.01%) 446.36
udp 3939158 ( 10.82%) 1685703947 ( 11.50%) 427.94
dns 1423859 ( 3.91%) 711839931 ( 4.85%) 499.94
rip 2 ( 0.00%) 232 ( 0.00%) 116.00
realaud 12 ( 0.00%) 1581 ( 0.00%) 131.75
halflif 24 ( 0.00%) 2466 ( 0.00%) 102.75
starcra 13 ( 0.00%) 868 ( 0.00%) 66.77
everque 38 ( 0.00%) 6267 ( 0.00%) 164.92
unreal 15 ( 0.00%) 1580 ( 0.00%) 105.33
quake 11 ( 0.00%) 894 ( 0.00%) 81.27
cuseeme 1 ( 0.00%) 95 ( 0.00%) 95.00
other 2514119 ( 6.91%) 973411621 ( 6.64%) 387.18
icmp 18129254 ( 49.81%) 1155319144 ( 7.88%) 63.73
ipip 186 ( 0.00%) 19350 ( 0.00%) 104.03
ipsec 1 ( 0.00%) 438 ( 0.00%) 438.00
ip6 316485 ( 0.87%) 165992771 ( 1.13%) 524.49
sctp 2 ( 0.00%) 206 ( 0.00%) 103.00
other 157890 ( 0.43%) 29087295 ( 0.20%) 184.23
frag 816310 ( 2.24%) 1085985462 ( 7.41%) 1330.36
ip6 823873 ( 2.26%) 758537683 ( 5.17%) 920.70
tcp6 699076 ( 1.92%) 732278493 ( 4.99%) 1047.49
http(s) 497827 ( 1.37%) 576025014 ( 3.93%) 1157.08
http(c) 97710 ( 0.27%) 11017978 ( 0.08%) 112.76
squid 34 ( 0.00%) 8016 ( 0.00%) 235.76
smtp 84 ( 0.00%) 10467 ( 0.00%) 124.61
ftp 25 ( 0.00%) 2209 ( 0.00%) 88.36
pop3 80 ( 0.00%) 9184 ( 0.00%) 114.80
ssh 734 ( 0.00%) 104487 ( 0.00%) 142.35
dns 360 ( 0.00%) 56071 ( 0.00%) 155.75
bgp 94 ( 0.00%) 22577 ( 0.00%) 240.18
other 102128 ( 0.28%) 145022490 ( 0.99%) 1420.01
udp6 84433 ( 0.23%) 20919387 ( 0.14%) 247.76
dns 82564 ( 0.23%) 20706739 ( 0.14%) 250.80
everque 1 ( 0.00%) 112 ( 0.00%) 112.00
quake 1 ( 0.00%) 94 ( 0.00%) 94.00
other 1867 ( 0.01%) 212442 ( 0.00%) 113.79
icmp6 39825 ( 0.11%) 4904124 ( 0.03%) 123.14
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 509 ( 0.00%) 431599 ( 0.00%) 847.94
tcpdump file: 201307281400.dump.gz (740.26 MB)