Traffic Trace Info
DumpFile: 201308201400.dump
FileSize: 3381.13MB
Id: 201308201400
StartTime: Tue Aug 20 14:00:01 2013
EndTime: Tue Aug 20 14:15:00 2013
TotalTime: 899.58 seconds
TotalCapSize: -1494.71MB CapLen: 96 bytes
# of packets: 51106779 (22883.27MB)
AvgRate: 213.39Mbps stddev:34.03M
IP flow (unique src/dst pair) Information
# of flows: 20709020 (avg. 2.47 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.6% 1.4% 1.4% 1.3% 1.2% 1.2% 1.1% 1.1% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 16797989
Top 10 bandwidth usage (bytes/total in %):
13.4% 12.6% 5.7% 3.5% 3.0% 2.8% 2.8% 2.4% 2.1% 1.8%
# of IPv6 addresses: 12752
Top 10 bandwidth usage (bytes/total in %):
20.2% 5.4% 5.3% 5.3% 4.9% 4.9% 3.7% 3.5% 3.4% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308201400.pktlen.png)
detailed numbers
[ 32- 63]: 26118215
[ 64- 127]: 8312524
[ 128- 255]: 905354
[ 256- 511]: 1022796
[ 512- 1023]: 773987
[ 1024- 2047]: 13973903
Protocol Breakdown
![[protocol breakdown chart]](201308201400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 51106779 (100.00%) 23994845282 (100.00%) 469.50
ip 48589076 ( 95.07%) 22195506652 ( 92.50%) 456.80
tcp 22827443 ( 44.67%) 18846960322 ( 78.55%) 825.63
http(s) 12637765 ( 24.73%) 16424758753 ( 68.45%) 1299.66
http(c) 8795813 ( 17.21%) 1878181255 ( 7.83%) 213.53
squid 39674 ( 0.08%) 11549143 ( 0.05%) 291.10
smtp 80399 ( 0.16%) 33509106 ( 0.14%) 416.79
nntp 33 ( 0.00%) 1980 ( 0.00%) 60.00
ftp 38489 ( 0.08%) 2423716 ( 0.01%) 62.97
pop3 4047 ( 0.01%) 2485592 ( 0.01%) 614.18
imap 9116 ( 0.02%) 6837602 ( 0.03%) 750.07
telnet 2871 ( 0.01%) 1676589 ( 0.01%) 583.97
ssh 75209 ( 0.15%) 8332333 ( 0.03%) 110.79
dns 5882 ( 0.01%) 3084907 ( 0.01%) 524.47
bgp 666 ( 0.00%) 232643 ( 0.00%) 349.31
napster 77 ( 0.00%) 5984 ( 0.00%) 77.71
rtsp 66 ( 0.00%) 36085 ( 0.00%) 546.74
icecast 34206 ( 0.07%) 2262526 ( 0.01%) 66.14
hotline 2 ( 0.00%) 120 ( 0.00%) 60.00
other 1103128 ( 2.16%) 471581988 ( 1.97%) 427.50
udp 2903124 ( 5.68%) 1286913126 ( 5.36%) 443.29
dns 936346 ( 1.83%) 207200751 ( 0.86%) 221.29
rip 11 ( 0.00%) 952 ( 0.00%) 86.55
realaud 32 ( 0.00%) 22592 ( 0.00%) 706.00
halflif 7334 ( 0.01%) 7330482 ( 0.03%) 999.52
starcra 18 ( 0.00%) 1692 ( 0.00%) 94.00
everque 189 ( 0.00%) 54587 ( 0.00%) 288.82
unreal 25 ( 0.00%) 11606 ( 0.00%) 464.24
quake 36 ( 0.00%) 16711 ( 0.00%) 464.19
cuseeme 11 ( 0.00%) 6109 ( 0.00%) 555.36
other 1957825 ( 3.83%) 1071954247 ( 4.47%) 547.52
icmp 22176493 ( 43.39%) 1406552955 ( 5.86%) 63.43
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 4842 ( 0.01%) 3060372 ( 0.01%) 632.05
ip6 580440 ( 1.14%) 630308678 ( 2.63%) 1085.92
other 96549 ( 0.19%) 21691929 ( 0.09%) 224.67
frag 598679 ( 1.17%) 762064844 ( 3.18%) 1272.91
ip6 2517703 ( 4.93%) 1799338630 ( 7.50%) 714.67
tcp6 2372825 ( 4.64%) 1751607341 ( 7.30%) 738.19
http(s) 1261939 ( 2.47%) 1593877461 ( 6.64%) 1263.04
http(c) 498707 ( 0.98%) 44429129 ( 0.19%) 89.09
squid 7 ( 0.00%) 1397 ( 0.00%) 199.57
smtp 1187 ( 0.00%) 403400 ( 0.00%) 339.85
ftp 24 ( 0.00%) 2183 ( 0.00%) 90.96
pop3 37 ( 0.00%) 30978 ( 0.00%) 837.24
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 458 ( 0.00%) 82232 ( 0.00%) 179.55
bgp 95 ( 0.00%) 24128 ( 0.00%) 253.98
other 610299 ( 1.19%) 112743983 ( 0.47%) 184.74
udp6 111234 ( 0.22%) 27058092 ( 0.11%) 243.25
dns 107274 ( 0.21%) 26572369 ( 0.11%) 247.71
realaud 1 ( 0.00%) 106 ( 0.00%) 106.00
everque 4 ( 0.00%) 416 ( 0.00%) 104.00
unreal 1 ( 0.00%) 118 ( 0.00%) 118.00
quake 2 ( 0.00%) 213 ( 0.00%) 106.50
cuseeme 2 ( 0.00%) 216 ( 0.00%) 108.00
other 3950 ( 0.01%) 484654 ( 0.00%) 122.70
icmp6 18322 ( 0.04%) 2371752 ( 0.01%) 129.45
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 15292 ( 0.03%) 18297365 ( 0.08%) 1196.53
tcpdump file: 201308201400.dump.gz (1050.28 MB)