Traffic Trace Info
DumpFile: 201308131400.dump
FileSize: 2963.99MB
Id: 201308131400
StartTime: Tue Aug 13 14:00:00 2013
EndTime: Tue Aug 13 14:15:00 2013
TotalTime: 900.07 seconds
TotalCapSize: -1827.71MB CapLen: 96 bytes
# of packets: 45592962 (17875.34MB)
AvgRate: 166.65Mbps stddev:34.75M
IP flow (unique src/dst pair) Information
# of flows: 21088070 (avg. 2.16 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.7% 2.7% 2.4% 2.3% 2.1% 2.0% 1.7% 1.6% 1.5% 1.5%
IP address Information
# of IPv4 addresses: 17024933
Top 10 bandwidth usage (bytes/total in %):
11.8% 7.0% 6.8% 5.7% 4.6% 3.8% 3.7% 3.0% 2.9% 2.7%
# of IPv6 addresses: 11522
Top 10 bandwidth usage (bytes/total in %):
28.3% 28.3% 21.8% 20.2% 20.0% 4.3% 1.8% 1.8% 1.8% 1.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308131400.pktlen.png)
detailed numbers
[ 32- 63]: 24560333
[ 64- 127]: 8274879
[ 128- 255]: 516176
[ 256- 511]: 892405
[ 512- 1023]: 749482
[ 1024- 2047]: 10599687
Protocol Breakdown
![[protocol breakdown chart]](201308131400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 45592962 (100.00%) 18743655610 (100.00%) 411.11
ip 43838238 ( 96.15%) 17388964199 ( 92.77%) 396.66
tcp 18660269 ( 40.93%) 14074747717 ( 75.09%) 754.26
http(s) 9550229 ( 20.95%) 11786937082 ( 62.88%) 1234.20
http(c) 7546760 ( 16.55%) 1626203273 ( 8.68%) 215.48
squid 114259 ( 0.25%) 21047898 ( 0.11%) 184.21
smtp 56720 ( 0.12%) 15524921 ( 0.08%) 273.71
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 47512 ( 0.10%) 24030056 ( 0.13%) 505.77
pop3 1990 ( 0.00%) 1070154 ( 0.01%) 537.77
imap 1995 ( 0.00%) 359356 ( 0.00%) 180.13
telnet 5096 ( 0.01%) 1838814 ( 0.01%) 360.83
ssh 38761 ( 0.09%) 5197368 ( 0.03%) 134.09
dns 2426 ( 0.01%) 477288 ( 0.00%) 196.74
bgp 539 ( 0.00%) 122033 ( 0.00%) 226.41
napster 7 ( 0.00%) 804 ( 0.00%) 114.86
realaud 2 ( 0.00%) 120 ( 0.00%) 60.00
icecast 1888 ( 0.00%) 146479 ( 0.00%) 77.58
hotline 6 ( 0.00%) 366 ( 0.00%) 61.00
other 1292078 ( 2.83%) 591791645 ( 3.16%) 458.02
udp 3329171 ( 7.30%) 1809421347 ( 9.65%) 543.51
dns 1374078 ( 3.01%) 622293378 ( 3.32%) 452.88
rip 9 ( 0.00%) 771 ( 0.00%) 85.67
realaud 20 ( 0.00%) 11215 ( 0.00%) 560.75
halflif 25 ( 0.00%) 6731 ( 0.00%) 269.24
starcra 10 ( 0.00%) 1593 ( 0.00%) 159.30
everque 55 ( 0.00%) 12802 ( 0.00%) 232.76
unreal 3 ( 0.00%) 274 ( 0.00%) 91.33
quake 19 ( 0.00%) 1588 ( 0.00%) 83.58
cuseeme 15 ( 0.00%) 3544 ( 0.00%) 236.27
other 1952513 ( 4.28%) 1185382492 ( 6.32%) 607.11
icmp 21556203 ( 47.28%) 1359818374 ( 7.25%) 63.08
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 9671 ( 0.02%) 6296706 ( 0.03%) 651.09
ip6 191611 ( 0.42%) 119533465 ( 0.64%) 623.83
other 91128 ( 0.20%) 19127320 ( 0.10%) 209.90
frag 844937 ( 1.85%) 1026016871 ( 5.47%) 1214.31
ip6 1754724 ( 3.85%) 1354691411 ( 7.23%) 772.03
tcp6 1634871 ( 3.59%) 1326508959 ( 7.08%) 811.38
http(s) 960222 ( 2.11%) 1260459695 ( 6.72%) 1312.68
http(c) 589050 ( 1.29%) 50687452 ( 0.27%) 86.05
squid 35 ( 0.00%) 8090 ( 0.00%) 231.14
smtp 195 ( 0.00%) 62233 ( 0.00%) 319.14
ftp 385 ( 0.00%) 34895 ( 0.00%) 90.64
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 543 ( 0.00%) 84038 ( 0.00%) 154.77
bgp 91 ( 0.00%) 21308 ( 0.00%) 234.15
other 84278 ( 0.18%) 15138798 ( 0.08%) 179.63
udp6 99764 ( 0.22%) 24834812 ( 0.13%) 248.94
dns 97444 ( 0.21%) 24560344 ( 0.13%) 252.05
realaud 2 ( 0.00%) 203 ( 0.00%) 101.50
halflif 1 ( 0.00%) 110 ( 0.00%) 110.00
everque 2 ( 0.00%) 216 ( 0.00%) 108.00
unreal 1 ( 0.00%) 106 ( 0.00%) 106.00
quake 2 ( 0.00%) 210 ( 0.00%) 105.00
cuseeme 2 ( 0.00%) 191 ( 0.00%) 95.50
other 2310 ( 0.01%) 273432 ( 0.00%) 118.37
icmp6 19231 ( 0.04%) 2543790 ( 0.01%) 132.28
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 827 ( 0.00%) 799634 ( 0.00%) 966.91
tcpdump file: 201308131400.dump.gz (936.83 MB)