Traffic Trace Info
DumpFile: 201308161400.dump
FileSize: 2643.33MB
Id: 201308161400
StartTime: Fri Aug 16 14:00:01 2013
EndTime: Fri Aug 16 14:15:00 2013
TotalTime: 899.27 seconds
TotalCapSize: 2016.81MB CapLen: 96 bytes
# of packets: 41058696 (14942.92MB)
AvgRate: 139.40Mbps stddev:25.40M
IP flow (unique src/dst pair) Information
# of flows: 20991403 (avg. 1.96 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.5% 3.1% 2.7% 2.4% 2.0% 1.8% 1.8% 1.5% 1.3% 1.3%
IP address Information
# of IPv4 addresses: 17029375
Top 10 bandwidth usage (bytes/total in %):
14.5% 8.3% 5.8% 5.8% 5.4% 5.4% 5.2% 3.3% 2.9% 2.8%
# of IPv6 addresses: 11139
Top 10 bandwidth usage (bytes/total in %):
43.3% 11.5% 11.1% 7.2% 3.8% 3.1% 3.0% 2.9% 2.9% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308161400.pktlen.png)
detailed numbers
[ 32- 63]: 24106429
[ 64- 127]: 6273436
[ 128- 255]: 613626
[ 256- 511]: 659082
[ 512- 1023]: 582062
[ 1024- 2047]: 8824061
Protocol Breakdown
![[protocol breakdown chart]](201308161400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 41058696 (100.00%) 15668785468 (100.00%) 381.62
ip 39096969 ( 95.22%) 14877267773 ( 94.95%) 380.52
tcp 13462289 ( 32.79%) 10852295273 ( 69.26%) 806.13
http(s) 6968191 ( 16.97%) 8891333753 ( 56.75%) 1275.99
http(c) 4422442 ( 10.77%) 706956682 ( 4.51%) 159.86
squid 12840 ( 0.03%) 6364733 ( 0.04%) 495.70
smtp 53113 ( 0.13%) 18404084 ( 0.12%) 346.51
ftp 17131 ( 0.04%) 2304318 ( 0.01%) 134.51
pop3 2563 ( 0.01%) 1873601 ( 0.01%) 731.02
imap 54804 ( 0.13%) 69645624 ( 0.44%) 1270.81
telnet 48120 ( 0.12%) 4988314 ( 0.03%) 103.66
ssh 19598 ( 0.05%) 5810410 ( 0.04%) 296.48
dns 2017 ( 0.00%) 289341 ( 0.00%) 143.45
bgp 539 ( 0.00%) 114473 ( 0.00%) 212.38
napster 7 ( 0.00%) 488 ( 0.00%) 69.71
icecast 197 ( 0.00%) 21562 ( 0.00%) 109.45
hotline 1 ( 0.00%) 60 ( 0.00%) 60.00
other 1860724 ( 4.53%) 1144187706 ( 7.30%) 614.92
udp 3009115 ( 7.33%) 1766872194 ( 11.28%) 587.17
dns 940597 ( 2.29%) 444029808 ( 2.83%) 472.07
rip 1 ( 0.00%) 82 ( 0.00%) 82.00
realaud 27 ( 0.00%) 10204 ( 0.00%) 377.93
halflif 51677 ( 0.13%) 39559732 ( 0.25%) 765.52
starcra 78 ( 0.00%) 5198 ( 0.00%) 66.64
everque 65 ( 0.00%) 21047 ( 0.00%) 323.80
unreal 8 ( 0.00%) 606 ( 0.00%) 75.75
quake 23 ( 0.00%) 5565 ( 0.00%) 241.96
cuseeme 9 ( 0.00%) 2851 ( 0.00%) 316.78
other 2014754 ( 4.91%) 1282240579 ( 8.18%) 636.43
icmp 21809537 ( 53.12%) 1378004237 ( 8.79%) 63.18
ipip 184 ( 0.00%) 19160 ( 0.00%) 104.13
ipsec 3183 ( 0.01%) 2198914 ( 0.01%) 690.83
ip6 714047 ( 1.74%) 857270698 ( 5.47%) 1200.58
other 98614 ( 0.24%) 20607297 ( 0.13%) 208.97
frag 798238 ( 1.94%) 978026897 ( 6.24%) 1225.23
ip6 1961725 ( 4.78%) 791517575 ( 5.05%) 403.48
tcp6 1841092 ( 4.48%) 763849042 ( 4.87%) 414.89
http(s) 503690 ( 1.23%) 619710211 ( 3.96%) 1230.34
http(c) 1023072 ( 2.49%) 81198454 ( 0.52%) 79.37
smtp 93 ( 0.00%) 19091 ( 0.00%) 205.28
ftp 25 ( 0.00%) 2232 ( 0.00%) 89.28
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 299 ( 0.00%) 50016 ( 0.00%) 167.28
bgp 99 ( 0.00%) 26263 ( 0.00%) 265.28
other 313742 ( 0.76%) 62830325 ( 0.40%) 200.26
udp6 94924 ( 0.23%) 23727030 ( 0.15%) 249.96
dns 92792 ( 0.23%) 23492778 ( 0.15%) 253.18
halflif 1 ( 0.00%) 93 ( 0.00%) 93.00
everque 1 ( 0.00%) 107 ( 0.00%) 107.00
quake 2 ( 0.00%) 206 ( 0.00%) 103.00
other 2128 ( 0.01%) 233846 ( 0.00%) 109.89
icmp6 24877 ( 0.06%) 3151331 ( 0.02%) 126.68
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 802 ( 0.00%) 786092 ( 0.01%) 980.16
tcpdump file: 201308161400.dump.gz (823.15 MB)