Traffic Trace Info
DumpFile: 201308141400.dump
FileSize: 2757.29MB
Id: 201308141400
StartTime: Wed Aug 14 14:00:01 2013
EndTime: Wed Aug 14 14:15:00 2013
TotalTime: 899.23 seconds
TotalCapSize: -1986.14MB CapLen: 96 bytes
# of packets: 42429727 (16630.11MB)
AvgRate: 155.09Mbps stddev:34.74M
IP flow (unique src/dst pair) Information
# of flows: 20062844 (avg. 2.11 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.5% 2.0% 1.6% 1.5% 1.4% 1.4% 1.4% 1.3% 1.2% 1.1%
IP address Information
# of IPv4 addresses: 16332120
Top 10 bandwidth usage (bytes/total in %):
7.4% 6.2% 5.7% 4.6% 2.8% 2.7% 2.5% 2.5% 2.4% 2.2%
# of IPv6 addresses: 11232
Top 10 bandwidth usage (bytes/total in %):
32.0% 22.4% 22.3% 3.5% 3.5% 3.1% 2.7% 2.2% 2.1% 2.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308141400.pktlen.png)
detailed numbers
[ 32- 63]: 23044034
[ 64- 127]: 6508642
[ 128- 255]: 1303195
[ 256- 511]: 1200654
[ 512- 1023]: 647286
[ 1024- 2047]: 9725916
Protocol Breakdown
![[protocol breakdown chart]](201308141400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 42429727 (100.00%) 17437932575 (100.00%) 410.98
ip 39993197 ( 94.26%) 16453550019 ( 94.35%) 411.41
tcp 15050503 ( 35.47%) 13340527376 ( 76.50%) 886.38
http(s) 7563042 ( 17.82%) 9576700244 ( 54.92%) 1266.25
http(c) 5548567 ( 13.08%) 2259567570 ( 12.96%) 407.23
squid 45885 ( 0.11%) 36640486 ( 0.21%) 798.53
smtp 50626 ( 0.12%) 10427698 ( 0.06%) 205.98
ftp 34338 ( 0.08%) 22935459 ( 0.13%) 667.93
pop3 2184 ( 0.01%) 1150338 ( 0.01%) 526.71
imap 2099 ( 0.00%) 710881 ( 0.00%) 338.68
telnet 2719 ( 0.01%) 1663842 ( 0.01%) 611.93
ssh 23004 ( 0.05%) 4991399 ( 0.03%) 216.98
dns 6059 ( 0.01%) 3036771 ( 0.02%) 501.20
bgp 534 ( 0.00%) 115173 ( 0.00%) 215.68
napster 10 ( 0.00%) 1332 ( 0.00%) 133.20
realaud 5 ( 0.00%) 665 ( 0.00%) 133.00
icecast 2416 ( 0.01%) 2371860 ( 0.01%) 981.73
hotline 27 ( 0.00%) 12172 ( 0.00%) 450.81
other 1768988 ( 4.17%) 1420201486 ( 8.14%) 802.83
udp 2911266 ( 6.86%) 1481279034 ( 8.49%) 508.81
dns 1235502 ( 2.91%) 576097359 ( 3.30%) 466.29
rip 1 ( 0.00%) 82 ( 0.00%) 82.00
realaud 26 ( 0.00%) 2588 ( 0.00%) 99.54
halflif 19 ( 0.00%) 2457 ( 0.00%) 129.32
starcra 26 ( 0.00%) 6172 ( 0.00%) 237.38
everque 55 ( 0.00%) 12961 ( 0.00%) 235.65
unreal 18 ( 0.00%) 4790 ( 0.00%) 266.11
quake 20 ( 0.00%) 3450 ( 0.00%) 172.50
cuseeme 3 ( 0.00%) 257 ( 0.00%) 85.67
other 1672144 ( 3.94%) 903517016 ( 5.18%) 540.33
icmp 21631255 ( 50.98%) 1351525665 ( 7.75%) 62.48
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 11692 ( 0.03%) 6071924 ( 0.03%) 519.32
ip6 286782 ( 0.68%) 253153803 ( 1.45%) 882.74
other 101514 ( 0.24%) 20972947 ( 0.12%) 206.60
frag 846157 ( 1.99%) 1032239958 ( 5.92%) 1219.92
ip6 2436528 ( 5.74%) 984382436 ( 5.65%) 404.01
tcp6 2319393 ( 5.47%) 957710124 ( 5.49%) 412.91
http(s) 528451 ( 1.25%) 638158040 ( 3.66%) 1207.60
http(c) 793176 ( 1.87%) 70245719 ( 0.40%) 88.56
smtp 70 ( 0.00%) 26960 ( 0.00%) 385.14
ftp 1148 ( 0.00%) 136375 ( 0.00%) 118.79
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 386 ( 0.00%) 55100 ( 0.00%) 142.75
bgp 96 ( 0.00%) 24176 ( 0.00%) 251.83
other 995994 ( 2.35%) 249051304 ( 1.43%) 250.05
udp6 92090 ( 0.22%) 22897987 ( 0.13%) 248.65
dns 89729 ( 0.21%) 22640323 ( 0.13%) 252.32
realaud 1 ( 0.00%) 108 ( 0.00%) 108.00
everque 2 ( 0.00%) 218 ( 0.00%) 109.00
quake 2 ( 0.00%) 213 ( 0.00%) 106.50
other 2356 ( 0.01%) 257125 ( 0.00%) 109.14
icmp6 24379 ( 0.06%) 3145734 ( 0.02%) 129.03
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 635 ( 0.00%) 624375 ( 0.00%) 983.27
tcpdump file: 201308141400.dump.gz (851.27 MB)