Traffic Trace Info
DumpFile: 201308261400.dump
FileSize: 4528.33MB
Id: 201308261400
StartTime: Mon Aug 26 14:00:01 2013
EndTime: Mon Aug 26 14:15:01 2013
TotalTime: 900.02 seconds
TotalCapSize: -667.17MB CapLen: 96 bytes
# of packets: 72056728 (32925.59MB)
AvgRate: 306.78Mbps stddev:58.36M
IP flow (unique src/dst pair) Information
# of flows: 29385763 (avg. 2.45 pkts/flow)
Top 10 big flow size (bytes/total in %):
16.5% 4.1% 1.8% 1.3% 1.0% 0.9% 0.9% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 23424166
Top 10 bandwidth usage (bytes/total in %):
17.6% 17.6% 8.5% 6.9% 6.6% 6.5% 5.0% 4.4% 2.4% 2.1%
# of IPv6 addresses: 12368
Top 10 bandwidth usage (bytes/total in %):
16.1% 16.1% 15.0% 4.3% 3.4% 3.4% 3.4% 3.2% 3.2% 3.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308261400.pktlen.png)
detailed numbers
[ 32- 63]: 39505527
[ 64- 127]: 8938333
[ 128- 255]: 954882
[ 256- 511]: 1063598
[ 512- 1023]: 1516132
[ 1024- 2047]: 20078256
Protocol Breakdown
![[protocol breakdown chart]](201308261400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 72056728 (100.00%) 34524980254 (100.00%) 479.14
ip 69161399 ( 95.98%) 32508438400 ( 94.16%) 470.04
tcp 22564563 ( 31.31%) 20153155561 ( 58.37%) 893.13
http(s) 13519300 ( 18.76%) 17746373667 ( 51.40%) 1312.67
http(c) 7343916 ( 10.19%) 1596385426 ( 4.62%) 217.38
squid 14243 ( 0.02%) 4691589 ( 0.01%) 329.40
smtp 98031 ( 0.14%) 50463789 ( 0.15%) 514.77
nntp 52 ( 0.00%) 3120 ( 0.00%) 60.00
ftp 55554 ( 0.08%) 35421564 ( 0.10%) 637.61
pop3 3993 ( 0.01%) 2316187 ( 0.01%) 580.06
imap 4440 ( 0.01%) 1086490 ( 0.00%) 244.70
telnet 15949 ( 0.02%) 2633739 ( 0.01%) 165.14
ssh 158540 ( 0.22%) 19243469 ( 0.06%) 121.38
dns 5976 ( 0.01%) 3065940 ( 0.01%) 513.04
bgp 574 ( 0.00%) 158785 ( 0.00%) 276.63
napster 20 ( 0.00%) 2154 ( 0.00%) 107.70
realaud 6 ( 0.00%) 727 ( 0.00%) 121.17
rtsp 3717 ( 0.01%) 4992580 ( 0.01%) 1343.17
icecast 55050 ( 0.08%) 3666216 ( 0.01%) 66.60
hotline 12 ( 0.00%) 1091 ( 0.00%) 90.92
other 1285190 ( 1.78%) 682649028 ( 1.98%) 531.17
udp 10442893 ( 14.49%) 9792486639 ( 28.36%) 937.72
dns 1514820 ( 2.10%) 755950324 ( 2.19%) 499.04
rip 435 ( 0.00%) 600748 ( 0.00%) 1381.03
realaud 14 ( 0.00%) 1810 ( 0.00%) 129.29
halflif 13 ( 0.00%) 1220 ( 0.00%) 93.85
starcra 18 ( 0.00%) 1926 ( 0.00%) 107.00
everque 46 ( 0.00%) 8632 ( 0.00%) 187.65
unreal 16 ( 0.00%) 1640 ( 0.00%) 102.50
quake 15 ( 0.00%) 1435 ( 0.00%) 95.67
cuseeme 4 ( 0.00%) 343 ( 0.00%) 85.75
other 8891661 ( 12.34%) 9017602778 ( 26.12%) 1014.16
icmp 35508019 ( 49.28%) 2216026237 ( 6.42%) 62.41
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 28748 ( 0.04%) 9907540 ( 0.03%) 344.63
ip6 520744 ( 0.72%) 315528591 ( 0.91%) 605.92
other 96247 ( 0.13%) 21314562 ( 0.06%) 221.46
frag 4834904 ( 6.71%) 6597242906 ( 19.11%) 1364.50
ip6 2895329 ( 4.02%) 2016541854 ( 5.84%) 696.48
tcp6 2750638 ( 3.82%) 1980260031 ( 5.74%) 719.93
http(s) 1206877 ( 1.67%) 1515380706 ( 4.39%) 1255.62
http(c) 774042 ( 1.07%) 69583956 ( 0.20%) 89.90
smtp 109 ( 0.00%) 16944 ( 0.00%) 155.45
ftp 7141 ( 0.01%) 792734 ( 0.00%) 111.01
pop3 78 ( 0.00%) 9027 ( 0.00%) 115.73
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 3003 ( 0.00%) 817007 ( 0.00%) 272.06
bgp 90 ( 0.00%) 20484 ( 0.00%) 227.60
other 759226 ( 1.05%) 393626723 ( 1.14%) 518.46
udp6 126107 ( 0.18%) 33155227 ( 0.10%) 262.91
dns 116069 ( 0.16%) 32154728 ( 0.09%) 277.03
realaud 4 ( 0.00%) 458 ( 0.00%) 114.50
halflif 1 ( 0.00%) 174 ( 0.00%) 174.00
everque 1 ( 0.00%) 103 ( 0.00%) 103.00
unreal 1 ( 0.00%) 88 ( 0.00%) 88.00
cuseeme 1 ( 0.00%) 117 ( 0.00%) 117.00
other 10030 ( 0.01%) 999559 ( 0.00%) 99.66
icmp6 17665 ( 0.02%) 2236889 ( 0.01%) 126.63
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 889 ( 0.00%) 885627 ( 0.00%) 996.21
tcpdump file: 201308261400.dump.gz (1447.28 MB)