Traffic Trace Info
DumpFile: 201308051400.dump
FileSize: 3588.79MB
Id: 201308051400
StartTime: Mon Aug 5 14:00:01 2013
EndTime: Mon Aug 5 14:15:01 2013
TotalTime: 899.67 seconds
TotalCapSize: -1337.16MB CapLen: 96 bytes
# of packets: 54391243 (27148.47MB)
AvgRate: 253.10Mbps stddev:60.76M
IP flow (unique src/dst pair) Information
# of flows: 20920789 (avg. 2.60 pkts/flow)
Top 10 big flow size (bytes/total in %):
20.4% 5.2% 1.5% 1.3% 1.0% 0.9% 0.9% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 16958604
Top 10 bandwidth usage (bytes/total in %):
21.6% 21.3% 7.8% 5.5% 4.9% 4.7% 4.3% 3.0% 2.3% 2.1%
# of IPv6 addresses: 11781
Top 10 bandwidth usage (bytes/total in %):
35.9% 11.0% 11.0% 6.4% 3.4% 2.6% 2.6% 2.4% 2.2% 2.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308051400.pktlen.png)
detailed numbers
[ 32- 63]: 26375648
[ 64- 127]: 8399261
[ 128- 255]: 704953
[ 256- 511]: 1161515
[ 512- 1023]: 873893
[ 1024- 2047]: 16875973
Protocol Breakdown
![[protocol breakdown chart]](201308051400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 54391243 (100.00%) 28467229114 (100.00%) 523.38
ip 52030223 ( 95.66%) 27257282356 ( 95.75%) 523.87
tcp 26383319 ( 48.51%) 24358056398 ( 85.57%) 923.24
http(s) 14909409 ( 27.41%) 19639294931 ( 68.99%) 1317.24
http(c) 9134686 ( 16.79%) 2993098180 ( 10.51%) 327.66
squid 15909 ( 0.03%) 7319948 ( 0.03%) 460.11
smtp 70606 ( 0.13%) 16178686 ( 0.06%) 229.14
nntp 3 ( 0.00%) 180 ( 0.00%) 60.00
ftp 12403 ( 0.02%) 818925 ( 0.00%) 66.03
pop3 3315 ( 0.01%) 1572411 ( 0.01%) 474.33
imap 4479 ( 0.01%) 700326 ( 0.00%) 156.36
telnet 2656 ( 0.00%) 1663179 ( 0.01%) 626.20
ssh 53808 ( 0.10%) 12538861 ( 0.04%) 233.03
dns 4133 ( 0.01%) 1729162 ( 0.01%) 418.38
bgp 537 ( 0.00%) 109936 ( 0.00%) 204.72
napster 85 ( 0.00%) 17761 ( 0.00%) 208.95
realaud 75 ( 0.00%) 5082 ( 0.00%) 67.76
rtsp 492 ( 0.00%) 650182 ( 0.00%) 1321.51
icecast 33078 ( 0.06%) 17731358 ( 0.06%) 536.05
hotline 5 ( 0.00%) 306 ( 0.00%) 61.20
other 2137640 ( 3.93%) 1664626984 ( 5.85%) 778.72
udp 2497182 ( 4.59%) 1270494419 ( 4.46%) 508.77
dns 917850 ( 1.69%) 305538525 ( 1.07%) 332.89
rip 2 ( 0.00%) 156 ( 0.00%) 78.00
realaud 10 ( 0.00%) 1045 ( 0.00%) 104.50
halflif 14 ( 0.00%) 1464 ( 0.00%) 104.57
starcra 16 ( 0.00%) 1254 ( 0.00%) 78.38
everque 5416 ( 0.01%) 5406217 ( 0.02%) 998.19
unreal 94 ( 0.00%) 12455 ( 0.00%) 132.50
quake 9 ( 0.00%) 787 ( 0.00%) 87.44
cuseeme 3 ( 0.00%) 272 ( 0.00%) 90.67
other 1572460 ( 2.89%) 958824320 ( 3.37%) 609.76
icmp 22737335 ( 41.80%) 1416209713 ( 4.97%) 62.29
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 12562 ( 0.02%) 4532124 ( 0.02%) 360.78
ip6 297804 ( 0.55%) 185113587 ( 0.65%) 621.60
sctp 2 ( 0.00%) 206 ( 0.00%) 103.00
other 101834 ( 0.19%) 22856639 ( 0.08%) 224.45
frag 510648 ( 0.94%) 660097619 ( 2.32%) 1292.67
ip6 2361020 ( 4.34%) 1209946758 ( 4.25%) 512.47
tcp6 2225335 ( 4.09%) 1178079252 ( 4.14%) 529.39
http(s) 937875 ( 1.72%) 1040906818 ( 3.66%) 1109.86
http(c) 926564 ( 1.70%) 84316083 ( 0.30%) 91.00
smtp 140 ( 0.00%) 35301 ( 0.00%) 252.15
ftp 22 ( 0.00%) 1987 ( 0.00%) 90.32
pop3 164 ( 0.00%) 134126 ( 0.00%) 817.84
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 319 ( 0.00%) 65765 ( 0.00%) 206.16
bgp 96 ( 0.00%) 22097 ( 0.00%) 230.18
other 360083 ( 0.66%) 52584625 ( 0.18%) 146.03
udp6 107923 ( 0.20%) 27298053 ( 0.10%) 252.94
dns 105668 ( 0.19%) 27039116 ( 0.09%) 255.89
realaud 1 ( 0.00%) 100 ( 0.00%) 100.00
everque 2 ( 0.00%) 196 ( 0.00%) 98.00
quake 3 ( 0.00%) 333 ( 0.00%) 111.00
cuseeme 1 ( 0.00%) 172 ( 0.00%) 172.00
other 2248 ( 0.00%) 258136 ( 0.00%) 114.83
icmp6 26445 ( 0.05%) 3283836 ( 0.01%) 124.18
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 1286 ( 0.00%) 1281401 ( 0.00%) 996.42
tcpdump file: 201308051400.dump.gz (1108.52 MB)