Traffic Trace Info
DumpFile: 201308191400.dump
FileSize: 3694.65MB
Id: 201308191400
StartTime: Mon Aug 19 14:00:00 2013
EndTime: Mon Aug 19 14:15:00 2013
TotalTime: 899.70 seconds
TotalCapSize: -1249.37MB CapLen: 96 bytes
# of packets: 55575041 (28082.12MB)
AvgRate: 261.83Mbps stddev:43.93M
IP flow (unique src/dst pair) Information
# of flows: 20766214 (avg. 2.68 pkts/flow)
Top 10 big flow size (bytes/total in %):
10.5% 2.2% 1.8% 1.7% 1.3% 1.3% 0.9% 0.9% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 16730139
Top 10 bandwidth usage (bytes/total in %):
11.4% 11.4% 9.0% 6.6% 4.9% 4.0% 2.7% 2.7% 2.6% 2.4%
# of IPv6 addresses: 12501
Top 10 bandwidth usage (bytes/total in %):
16.5% 14.8% 13.9% 10.8% 10.4% 7.8% 5.1% 4.1% 3.8% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308191400.pktlen.png)
detailed numbers
[ 32- 63]: 25420408
[ 64- 127]: 9206739
[ 128- 255]: 982995
[ 256- 511]: 1329333
[ 512- 1023]: 1114607
[ 1024- 2047]: 17520959
Protocol Breakdown
![[protocol breakdown chart]](201308191400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 55575041 (100.00%) 29446238690 (100.00%) 529.85
ip 52957633 ( 95.29%) 27215193660 ( 92.42%) 513.91
tcp 26005707 ( 46.79%) 23902720981 ( 81.17%) 919.13
http(s) 13013851 ( 23.42%) 16793713149 ( 57.03%) 1290.45
http(c) 8365102 ( 15.05%) 2647650209 ( 8.99%) 316.51
squid 264633 ( 0.48%) 243142128 ( 0.83%) 918.79
smtp 57545 ( 0.10%) 13775570 ( 0.05%) 239.39
nntp 47 ( 0.00%) 2820 ( 0.00%) 60.00
ftp 6193 ( 0.01%) 409939 ( 0.00%) 66.19
pop3 2217 ( 0.00%) 875573 ( 0.00%) 394.94
imap 5957 ( 0.01%) 1337681 ( 0.00%) 224.56
telnet 3533 ( 0.01%) 1713202 ( 0.01%) 484.91
ssh 73220 ( 0.13%) 8900351 ( 0.03%) 121.56
dns 5786 ( 0.01%) 3040111 ( 0.01%) 525.43
bgp 485 ( 0.00%) 90755 ( 0.00%) 187.12
napster 33 ( 0.00%) 4779 ( 0.00%) 144.82
realaud 7 ( 0.00%) 1081 ( 0.00%) 154.43
rtsp 1 ( 0.00%) 60 ( 0.00%) 60.00
icecast 30211 ( 0.05%) 7362899 ( 0.03%) 243.72
hotline 2 ( 0.00%) 148 ( 0.00%) 74.00
other 4176884 ( 7.52%) 4180700526 ( 14.20%) 1000.91
udp 2930760 ( 5.27%) 1251430386 ( 4.25%) 427.00
dns 881274 ( 1.59%) 265736591 ( 0.90%) 301.54
rip 4 ( 0.00%) 332 ( 0.00%) 83.00
realaud 23 ( 0.00%) 7185 ( 0.00%) 312.39
halflif 3432 ( 0.01%) 5033443 ( 0.02%) 1466.62
starcra 20 ( 0.00%) 1901 ( 0.00%) 95.05
everque 60 ( 0.00%) 22177 ( 0.00%) 369.62
unreal 14 ( 0.00%) 5851 ( 0.00%) 417.93
quake 99 ( 0.00%) 15173 ( 0.00%) 153.26
cuseeme 5 ( 0.00%) 2711 ( 0.00%) 542.20
other 2042964 ( 3.68%) 980119712 ( 3.33%) 479.75
icmp 23361335 ( 42.04%) 1472655045 ( 5.00%) 63.04
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 32062 ( 0.06%) 23480728 ( 0.08%) 732.35
ip6 521881 ( 0.94%) 542115037 ( 1.84%) 1038.77
other 105703 ( 0.19%) 22772213 ( 0.08%) 215.44
frag 577376 ( 1.04%) 735128085 ( 2.50%) 1273.22
ip6 2617408 ( 4.71%) 2231045030 ( 7.58%) 852.39
tcp6 2295365 ( 4.13%) 1968826610 ( 6.69%) 857.74
http(s) 1415074 ( 2.55%) 1850280208 ( 6.28%) 1307.55
http(c) 309591 ( 0.56%) 28733774 ( 0.10%) 92.81
smtp 168 ( 0.00%) 52548 ( 0.00%) 312.79
ftp 177 ( 0.00%) 16565 ( 0.00%) 93.59
pop3 17 ( 0.00%) 1732 ( 0.00%) 101.88
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 336 ( 0.00%) 45969 ( 0.00%) 136.81
bgp 96 ( 0.00%) 26528 ( 0.00%) 276.33
other 569834 ( 1.03%) 89656836 ( 0.30%) 157.34
udp6 107587 ( 0.19%) 27370073 ( 0.09%) 254.40
dns 104886 ( 0.19%) 27063795 ( 0.09%) 258.03
realaud 1 ( 0.00%) 97 ( 0.00%) 97.00
halflif 1 ( 0.00%) 111 ( 0.00%) 111.00
starcra 1 ( 0.00%) 110 ( 0.00%) 110.00
everque 3 ( 0.00%) 306 ( 0.00%) 102.00
quake 4 ( 0.00%) 400 ( 0.00%) 100.00
other 2691 ( 0.00%) 305254 ( 0.00%) 113.44
icmp6 23046 ( 0.04%) 2914475 ( 0.01%) 126.46
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 191380 ( 0.34%) 231929792 ( 0.79%) 1211.88
tcpdump file: 201308191400.dump.gz (1120.58 MB)