Traffic Trace Info
DumpFile: 201308181400.dump
FileSize: 2395.67MB
Id: 201308181400
StartTime: Sun Aug 18 14:00:00 2013
EndTime: Sun Aug 18 14:15:00 2013
TotalTime: 900.04 seconds
TotalCapSize: 1811.90MB CapLen: 96 bytes
# of packets: 38258008 (13542.13MB)
AvgRate: 126.23Mbps stddev:29.78M
IP flow (unique src/dst pair) Information
# of flows: 20776293 (avg. 1.84 pkts/flow)
Top 10 big flow size (bytes/total in %):
7.0% 4.4% 3.7% 2.5% 2.3% 2.1% 2.0% 1.9% 1.9% 1.7%
IP address Information
# of IPv4 addresses: 16902174
Top 10 bandwidth usage (bytes/total in %):
13.3% 10.1% 9.7% 8.7% 7.5% 7.5% 5.7% 4.8% 4.0% 3.4%
# of IPv6 addresses: 10458
Top 10 bandwidth usage (bytes/total in %):
41.1% 41.1% 25.3% 7.2% 6.9% 4.9% 4.7% 2.9% 2.6% 2.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308181400.pktlen.png)
detailed numbers
[ 32- 63]: 24602771
[ 64- 127]: 4277805
[ 128- 255]: 484207
[ 256- 511]: 373770
[ 512- 1023]: 562649
[ 1024- 2047]: 7956806
Protocol Breakdown
![[protocol breakdown chart]](201308181400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 38258008 (100.00%) 14199954831 (100.00%) 371.16
ip 37271314 ( 97.42%) 13394981677 ( 94.33%) 359.39
tcp 10867263 ( 28.41%) 9575579394 ( 67.43%) 881.14
http(s) 6546609 ( 17.11%) 8622902738 ( 60.72%) 1317.16
http(c) 3419288 ( 8.94%) 624527635 ( 4.40%) 182.65
squid 11391 ( 0.03%) 6022102 ( 0.04%) 528.67
smtp 47690 ( 0.12%) 12924229 ( 0.09%) 271.01
nntp 34 ( 0.00%) 2040 ( 0.00%) 60.00
ftp 2164 ( 0.01%) 174033 ( 0.00%) 80.42
pop3 961 ( 0.00%) 253194 ( 0.00%) 263.47
imap 2515 ( 0.01%) 387814 ( 0.00%) 154.20
telnet 83406 ( 0.22%) 7611449 ( 0.05%) 91.26
ssh 82706 ( 0.22%) 10849241 ( 0.08%) 131.18
dns 1699 ( 0.00%) 283686 ( 0.00%) 166.97
bgp 693 ( 0.00%) 267551 ( 0.00%) 386.08
napster 14 ( 0.00%) 1548 ( 0.00%) 110.57
realaud 114 ( 0.00%) 13723 ( 0.00%) 120.38
icecast 1117 ( 0.00%) 240070 ( 0.00%) 214.92
hotline 1 ( 0.00%) 60 ( 0.00%) 60.00
other 666861 ( 1.74%) 289118281 ( 2.04%) 433.55
udp 2686580 ( 7.02%) 1370797068 ( 9.65%) 510.24
dns 757979 ( 1.98%) 192956464 ( 1.36%) 254.57
realaud 78 ( 0.00%) 14186 ( 0.00%) 181.87
halflif 7894 ( 0.02%) 11732632 ( 0.08%) 1486.27
starcra 54 ( 0.00%) 3965 ( 0.00%) 73.43
everque 38 ( 0.00%) 6973 ( 0.00%) 183.50
unreal 80 ( 0.00%) 6104 ( 0.00%) 76.30
quake 12 ( 0.00%) 5475 ( 0.00%) 456.25
cuseeme 9 ( 0.00%) 6048 ( 0.00%) 672.00
other 1919237 ( 5.02%) 1165726938 ( 8.21%) 607.39
icmp 22840298 ( 59.70%) 1422582178 ( 10.02%) 62.28
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 2824 ( 0.01%) 2094980 ( 0.01%) 741.85
ip6 769446 ( 2.01%) 1001861599 ( 7.06%) 1302.06
other 104718 ( 0.27%) 22047188 ( 0.16%) 210.54
frag 586593 ( 1.53%) 749611639 ( 5.28%) 1277.91
ip6 986694 ( 2.58%) 804973154 ( 5.67%) 815.83
tcp6 878769 ( 2.30%) 777297860 ( 5.47%) 884.53
http(s) 557965 ( 1.46%) 747142096 ( 5.26%) 1339.05
http(c) 109290 ( 0.29%) 10534288 ( 0.07%) 96.39
smtp 607 ( 0.00%) 155029 ( 0.00%) 255.40
ftp 25 ( 0.00%) 2209 ( 0.00%) 88.36
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 297 ( 0.00%) 49333 ( 0.00%) 166.10
bgp 94 ( 0.00%) 22995 ( 0.00%) 244.63
other 210419 ( 0.55%) 19379460 ( 0.14%) 92.10
udp6 81083 ( 0.21%) 20171802 ( 0.14%) 248.78
dns 78985 ( 0.21%) 19911581 ( 0.14%) 252.09
realaud 1 ( 0.00%) 117 ( 0.00%) 117.00
halflif 1 ( 0.00%) 112 ( 0.00%) 112.00
starcra 1 ( 0.00%) 98 ( 0.00%) 98.00
everque 1 ( 0.00%) 115 ( 0.00%) 115.00
quake 2 ( 0.00%) 226 ( 0.00%) 113.00
other 2092 ( 0.01%) 259553 ( 0.00%) 124.07
icmp6 22457 ( 0.06%) 2813916 ( 0.02%) 125.30
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 4355 ( 0.01%) 4685496 ( 0.03%) 1075.89
tcpdump file: 201308181400.dump.gz (740.82 MB)