Traffic Trace Info
DumpFile: 201308291400.dump
FileSize: 3941.18MB
Id: 201308291400
StartTime: Thu Aug 29 14:00:01 2013
EndTime: Thu Aug 29 14:15:01 2013
TotalTime: 899.93 seconds
TotalCapSize: -1089.11MB CapLen: 96 bytes
# of packets: 61228877 (22310.27MB)
AvgRate: 208.00Mbps stddev:60.61M
IP flow (unique src/dst pair) Information
# of flows: 29603048 (avg. 2.07 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.7% 3.1% 2.3% 2.2% 2.0% 1.7% 1.3% 1.3% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 23610568
Top 10 bandwidth usage (bytes/total in %):
11.8% 9.4% 5.4% 5.1% 4.6% 4.0% 3.8% 3.4% 3.3% 2.9%
# of IPv6 addresses: 11859
Top 10 bandwidth usage (bytes/total in %):
27.6% 9.0% 5.3% 5.3% 5.1% 3.7% 3.6% 3.3% 3.3% 3.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308291400.pktlen.png)
detailed numbers
[ 32- 63]: 36125136
[ 64- 127]: 9082486
[ 128- 255]: 849674
[ 256- 511]: 1025192
[ 512- 1023]: 1097158
[ 1024- 2047]: 13049231
Protocol Breakdown
![[protocol breakdown chart]](201308291400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 61228877 (100.00%) 23394015702 (100.00%) 382.07
ip 58158286 ( 94.99%) 21897660018 ( 93.60%) 376.52
tcp 20235834 ( 33.05%) 17537638687 ( 74.97%) 866.66
http(s) 10765086 ( 17.58%) 13765532987 ( 58.84%) 1278.72
http(c) 5998009 ( 9.80%) 2208945156 ( 9.44%) 368.28
squid 134999 ( 0.22%) 14398353 ( 0.06%) 106.66
smtp 80277 ( 0.13%) 33686936 ( 0.14%) 419.63
nntp 15 ( 0.00%) 900 ( 0.00%) 60.00
ftp 61663 ( 0.10%) 43406236 ( 0.19%) 703.93
pop3 6575 ( 0.01%) 5936713 ( 0.03%) 902.92
imap 10921 ( 0.02%) 9561165 ( 0.04%) 875.48
telnet 23536 ( 0.04%) 3196555 ( 0.01%) 135.82
ssh 1098403 ( 1.79%) 157881443 ( 0.67%) 143.74
dns 6188 ( 0.01%) 3265444 ( 0.01%) 527.71
bgp 568 ( 0.00%) 141059 ( 0.00%) 248.34
napster 113 ( 0.00%) 9120 ( 0.00%) 80.71
realaud 14 ( 0.00%) 840 ( 0.00%) 60.00
rtsp 12 ( 0.00%) 720 ( 0.00%) 60.00
icecast 6519 ( 0.01%) 428115 ( 0.00%) 65.67
hotline 8 ( 0.00%) 480 ( 0.00%) 60.00
other 2042880 ( 3.34%) 1291243585 ( 5.52%) 632.07
udp 2848577 ( 4.65%) 1782295295 ( 7.62%) 625.68
dns 969709 ( 1.58%) 517544763 ( 2.21%) 533.71
rip 16 ( 0.00%) 1056 ( 0.00%) 66.00
realaud 6 ( 0.00%) 480 ( 0.00%) 80.00
halflif 25 ( 0.00%) 1932 ( 0.00%) 77.28
starcra 4 ( 0.00%) 357 ( 0.00%) 89.25
everque 24 ( 0.00%) 4746 ( 0.00%) 197.75
unreal 26 ( 0.00%) 2597 ( 0.00%) 99.88
quake 11 ( 0.00%) 1158 ( 0.00%) 105.27
cuseeme 3 ( 0.00%) 245 ( 0.00%) 81.67
other 1852105 ( 3.02%) 1262191511 ( 5.40%) 681.49
icmp 34525397 ( 56.39%) 2136507976 ( 9.13%) 61.88
ipip 185 ( 0.00%) 19270 ( 0.00%) 104.16
ipsec 21837 ( 0.04%) 6398754 ( 0.03%) 293.02
ip6 416064 ( 0.68%) 409000664 ( 1.75%) 983.02
other 110392 ( 0.18%) 25799372 ( 0.11%) 233.71
frag 566243 ( 0.92%) 690785400 ( 2.95%) 1219.95
ip6 3070591 ( 5.01%) 1496355684 ( 6.40%) 487.32
tcp6 2949216 ( 4.82%) 1468676200 ( 6.28%) 497.99
http(s) 1009760 ( 1.65%) 1206015015 ( 5.16%) 1194.36
http(c) 1348562 ( 2.20%) 120293050 ( 0.51%) 89.20
squid 36 ( 0.00%) 8164 ( 0.00%) 226.78
smtp 120 ( 0.00%) 21087 ( 0.00%) 175.72
ftp 152 ( 0.00%) 15597 ( 0.00%) 102.61
pop3 129 ( 0.00%) 83672 ( 0.00%) 648.62
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 446 ( 0.00%) 70686 ( 0.00%) 158.49
bgp 94 ( 0.00%) 26303 ( 0.00%) 279.82
other 589845 ( 0.96%) 142130176 ( 0.61%) 240.96
udp6 103060 ( 0.17%) 24319241 ( 0.10%) 235.97
dns 99785 ( 0.16%) 23949254 ( 0.10%) 240.01
realaud 1 ( 0.00%) 112 ( 0.00%) 112.00
everque 3 ( 0.00%) 297 ( 0.00%) 99.00
quake 2 ( 0.00%) 279 ( 0.00%) 139.50
other 3269 ( 0.01%) 369299 ( 0.00%) 112.97
icmp6 17119 ( 0.03%) 2202727 ( 0.01%) 128.67
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1166 ( 0.00%) 1153436 ( 0.00%) 989.22
tcpdump file: 201308291400.dump.gz (1298.98 MB)