Traffic Trace Info
DumpFile: 201308101400.dump
FileSize: 2696.19MB
Id: 201308101400
StartTime: Sat Aug 10 14:00:01 2013
EndTime: Sat Aug 10 14:15:01 2013
TotalTime: 899.85 seconds
TotalCapSize: -2039.21MB CapLen: 96 bytes
# of packets: 41902909 (16497.49MB)
AvgRate: 153.83Mbps stddev:25.72M
IP flow (unique src/dst pair) Information
# of flows: 20530493 (avg. 2.04 pkts/flow)
Top 10 big flow size (bytes/total in %):
14.8% 2.5% 1.9% 1.9% 1.8% 1.7% 1.5% 1.4% 1.3% 1.2%
IP address Information
# of IPv4 addresses: 16654499
Top 10 bandwidth usage (bytes/total in %):
25.9% 16.1% 8.1% 5.0% 4.6% 3.6% 3.1% 3.0% 2.8% 2.7%
# of IPv6 addresses: 10643
Top 10 bandwidth usage (bytes/total in %):
53.1% 17.4% 17.0% 16.7% 6.1% 5.5% 5.0% 4.9% 3.9% 3.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308101400.pktlen.png)
detailed numbers
[ 32- 63]: 22982803
[ 64- 127]: 6685207
[ 128- 255]: 673841
[ 256- 511]: 882705
[ 512- 1023]: 820709
[ 1024- 2047]: 9857644
Protocol Breakdown
![[protocol breakdown chart]](201308101400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 41902909 (100.00%) 17298871144 (100.00%) 412.83
ip 40598251 ( 96.89%) 16118479206 ( 93.18%) 397.02
tcp 14477643 ( 34.55%) 12876005534 ( 74.43%) 889.37
http(s) 7993598 ( 19.08%) 10458235064 ( 60.46%) 1308.33
http(c) 4722699 ( 11.27%) 1123325646 ( 6.49%) 237.86
squid 8857 ( 0.02%) 4179985 ( 0.02%) 471.94
smtp 97598 ( 0.23%) 18222006 ( 0.11%) 186.70
ftp 10084 ( 0.02%) 655214 ( 0.00%) 64.98
pop3 5225 ( 0.01%) 6407553 ( 0.04%) 1226.33
imap 1654 ( 0.00%) 303925 ( 0.00%) 183.75
telnet 8231 ( 0.02%) 2028291 ( 0.01%) 246.42
ssh 93686 ( 0.22%) 9898573 ( 0.06%) 105.66
dns 5389 ( 0.01%) 3004876 ( 0.02%) 557.59
bgp 497 ( 0.00%) 96986 ( 0.00%) 195.14
napster 25 ( 0.00%) 3363 ( 0.00%) 134.52
realaud 10 ( 0.00%) 1372 ( 0.00%) 137.20
rtsp 3 ( 0.00%) 180 ( 0.00%) 60.00
icecast 611 ( 0.00%) 79855 ( 0.00%) 130.70
hotline 10 ( 0.00%) 1372 ( 0.00%) 137.20
other 1529463 ( 3.65%) 1249561093 ( 7.22%) 816.99
udp 2786298 ( 6.65%) 1458279188 ( 8.43%) 523.38
dns 907685 ( 2.17%) 378770075 ( 2.19%) 417.29
rip 2 ( 0.00%) 169 ( 0.00%) 84.50
realaud 21 ( 0.00%) 11843 ( 0.00%) 563.95
halflif 60451 ( 0.14%) 37495060 ( 0.22%) 620.26
starcra 7 ( 0.00%) 474 ( 0.00%) 67.71
everque 204 ( 0.00%) 23462 ( 0.00%) 115.01
unreal 657 ( 0.00%) 39822 ( 0.00%) 60.61
quake 18 ( 0.00%) 3596 ( 0.00%) 199.78
cuseeme 6 ( 0.00%) 5244 ( 0.00%) 874.00
other 1815256 ( 4.33%) 1040749897 ( 6.02%) 573.34
icmp 22858477 ( 54.55%) 1438609918 ( 8.32%) 62.94
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 6023 ( 0.01%) 4338866 ( 0.03%) 720.38
ip6 297278 ( 0.71%) 309682643 ( 1.79%) 1041.73
sctp 2 ( 0.00%) 206 ( 0.00%) 103.00
other 172345 ( 0.41%) 31543581 ( 0.18%) 183.03
frag 727035 ( 1.74%) 892795433 ( 5.16%) 1228.00
ip6 1304658 ( 3.11%) 1180391938 ( 6.82%) 904.75
tcp6 674540 ( 1.61%) 527494644 ( 3.05%) 782.01
http(s) 370714 ( 0.88%) 468548596 ( 2.71%) 1263.91
http(c) 125978 ( 0.30%) 11218763 ( 0.06%) 89.05
smtp 72 ( 0.00%) 9120 ( 0.00%) 126.67
ftp 24 ( 0.00%) 2235 ( 0.00%) 93.12
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 382 ( 0.00%) 60218 ( 0.00%) 157.64
bgp 89 ( 0.00%) 20343 ( 0.00%) 228.57
other 177209 ( 0.42%) 47622919 ( 0.28%) 268.74
udp6 92529 ( 0.22%) 22287791 ( 0.13%) 240.87
dns 89837 ( 0.21%) 21971966 ( 0.13%) 244.58
halflif 1 ( 0.00%) 110 ( 0.00%) 110.00
everque 1 ( 0.00%) 172 ( 0.00%) 172.00
quake 3 ( 0.00%) 332 ( 0.00%) 110.67
other 2687 ( 0.01%) 315211 ( 0.00%) 117.31
icmp6 18300 ( 0.04%) 2368310 ( 0.01%) 129.42
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 519258 ( 1.24%) 628236977 ( 3.63%) 1209.87
tcpdump file: 201308101400.dump.gz (821.14 MB)