Traffic Trace Info
DumpFile: 201308301400.dump
FileSize: 4065.15MB
Id: 201308301400
StartTime: Fri Aug 30 14:00:00 2013
EndTime: Fri Aug 30 14:15:01 2013
TotalTime: 900.15 seconds
TotalCapSize: -989.15MB CapLen: 96 bytes
# of packets: 62802469 (23517.70MB)
AvgRate: 219.17Mbps stddev:41.96M
IP flow (unique src/dst pair) Information
# of flows: 29216373 (avg. 2.15 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.4% 2.4% 2.0% 1.5% 1.4% 1.4% 1.2% 1.1% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 23158467
Top 10 bandwidth usage (bytes/total in %):
13.2% 9.2% 4.9% 4.3% 3.8% 3.8% 3.0% 2.8% 2.7% 2.3%
# of IPv6 addresses: 12053
Top 10 bandwidth usage (bytes/total in %):
17.1% 4.5% 3.9% 3.7% 3.7% 3.3% 3.0% 3.0% 2.9% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201308301400.pktlen.png)
detailed numbers
[ 32- 63]: 36432188
[ 64- 127]: 9136681
[ 128- 255]: 749115
[ 256- 511]: 1755694
[ 512- 1023]: 1068367
[ 1024- 2047]: 13660424
Protocol Breakdown
![[protocol breakdown chart]](201308301400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 62802469 (100.00%) 24660092641 (100.00%) 392.66
ip 59634331 ( 94.96%) 22213604858 ( 90.08%) 372.50
tcp 22095194 ( 35.18%) 17993493764 ( 72.97%) 814.36
http(s) 10569759 ( 16.83%) 12979834459 ( 52.63%) 1228.02
http(c) 9193234 ( 14.64%) 3716538742 ( 15.07%) 404.27
squid 11342 ( 0.02%) 4558426 ( 0.02%) 401.91
smtp 78559 ( 0.13%) 22420329 ( 0.09%) 285.39
nntp 5 ( 0.00%) 300 ( 0.00%) 60.00
ftp 64073 ( 0.10%) 32766745 ( 0.13%) 511.40
pop3 3303 ( 0.01%) 1752713 ( 0.01%) 530.64
imap 5335 ( 0.01%) 2039379 ( 0.01%) 382.26
telnet 101641 ( 0.16%) 8971053 ( 0.04%) 88.26
ssh 345120 ( 0.55%) 51540613 ( 0.21%) 149.34
dns 3022 ( 0.00%) 525767 ( 0.00%) 173.98
bgp 525 ( 0.00%) 111936 ( 0.00%) 213.21
napster 50 ( 0.00%) 4402 ( 0.00%) 88.04
realaud 5 ( 0.00%) 304 ( 0.00%) 60.80
icecast 8603 ( 0.01%) 598946 ( 0.00%) 69.62
hotline 13 ( 0.00%) 1644 ( 0.00%) 126.46
other 1710605 ( 2.72%) 1171828006 ( 4.75%) 685.04
udp 2459220 ( 3.92%) 1197351387 ( 4.86%) 486.88
dns 1143315 ( 1.82%) 593685756 ( 2.41%) 519.27
rip 2 ( 0.00%) 162 ( 0.00%) 81.00
realaud 12 ( 0.00%) 1015 ( 0.00%) 84.58
halflif 12820 ( 0.02%) 19057902 ( 0.08%) 1486.58
starcra 10 ( 0.00%) 858 ( 0.00%) 85.80
everque 35 ( 0.00%) 5752 ( 0.00%) 164.34
unreal 9 ( 0.00%) 869 ( 0.00%) 96.56
quake 98 ( 0.00%) 83429 ( 0.00%) 851.32
cuseeme 5 ( 0.00%) 509 ( 0.00%) 101.80
other 1300989 ( 2.07%) 582924312 ( 2.36%) 448.06
icmp 34058142 ( 54.23%) 2117769384 ( 8.59%) 62.18
ipip 185 ( 0.00%) 19240 ( 0.00%) 104.00
ipsec 156739 ( 0.25%) 29207878 ( 0.12%) 186.35
ip6 730696 ( 1.16%) 845837657 ( 3.43%) 1157.58
other 134155 ( 0.21%) 29925548 ( 0.12%) 223.07
frag 653928 ( 1.04%) 823307244 ( 3.34%) 1259.02
ip6 3168138 ( 5.04%) 2446487783 ( 9.92%) 772.22
tcp6 3030660 ( 4.83%) 2408832498 ( 9.77%) 794.82
http(s) 1737251 ( 2.77%) 2291644812 ( 9.29%) 1319.12
http(c) 669256 ( 1.07%) 61108193 ( 0.25%) 91.31
smtp 287 ( 0.00%) 97037 ( 0.00%) 338.11
ftp 82 ( 0.00%) 9713 ( 0.00%) 118.45
pop3 80 ( 0.00%) 9197 ( 0.00%) 114.96
ssh 72 ( 0.00%) 12450 ( 0.00%) 172.92
dns 354 ( 0.00%) 57363 ( 0.00%) 162.04
bgp 93 ( 0.00%) 22065 ( 0.00%) 237.26
other 623185 ( 0.99%) 55871668 ( 0.23%) 89.66
udp6 103756 ( 0.17%) 23806338 ( 0.10%) 229.45
dns 100095 ( 0.16%) 23408264 ( 0.09%) 233.86
realaud 1 ( 0.00%) 99 ( 0.00%) 99.00
unreal 1 ( 0.00%) 106 ( 0.00%) 106.00
quake 2 ( 0.00%) 223 ( 0.00%) 111.50
other 3657 ( 0.01%) 397646 ( 0.00%) 108.74
icmp6 23781 ( 0.04%) 3029468 ( 0.01%) 127.39
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 9910 ( 0.02%) 10815263 ( 0.04%) 1091.35
tcpdump file: 201308301400.dump.gz (1329.60 MB)