Traffic Trace Info
DumpFile: 200803180030.dump
FileSize: 1255.26MB
Id: 200803180030
StartTime: Tue Mar 18 00:30:01 2008
EndTime: Tue Mar 18 00:45:00 2008
TotalTime: 899.49 seconds
TotalCapSize: 990.51MB CapLen: 96 bytes
# of packets: 17350268 (9320.76MB)
AvgRate: 86.93Mbps stddev:9.17M
IP flow (unique src/dst pair) Information
# of flows: 768819 (avg. 22.57 pkts/flow)
Top 10 big flow size (bytes/total in %):
27.8% 3.8% 1.5% 1.4% 1.2% 0.8% 0.7% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 420258
Top 10 bandwidth usage (bytes/total in %):
28.5% 28.5% 8.7% 8.3% 8.3% 5.7% 3.9% 3.1% 2.0% 1.6%
# of IPv6 addresses: 1822
Top 10 bandwidth usage (bytes/total in %):
57.4% 57.4% 10.0% 6.1% 4.0% 3.0% 2.5% 2.4% 2.2% 1.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803180030.pktlen.png)
detailed numbers
[ 32- 63]: 3074176
[ 64- 127]: 6493392
[ 128- 255]: 1136642
[ 256- 511]: 471401
[ 512- 1023]: 389879
[ 1024- 2047]: 5784778
Protocol Breakdown
![[protocol breakdown chart]](200803180030.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 17350268 (100.00%) 9773528517 (100.00%) 563.31
ip 17226806 ( 99.29%) 9761263899 ( 99.87%) 566.63
tcp 13800933 ( 79.54%) 9042010516 ( 92.52%) 655.17
http(s) 2706329 ( 15.60%) 3685197811 ( 37.71%) 1361.70
http(c) 1723002 ( 9.93%) 159762823 ( 1.63%) 92.72
squid 549408 ( 3.17%) 321001172 ( 3.28%) 584.27
smtp 995635 ( 5.74%) 185377967 ( 1.90%) 186.19
ftp 193423 ( 1.11%) 58092310 ( 0.59%) 300.34
pop3 4411 ( 0.03%) 1939633 ( 0.02%) 439.73
imap 5139 ( 0.03%) 870444 ( 0.01%) 169.38
telnet 23 ( 0.00%) 1476 ( 0.00%) 64.17
ssh 4950303 ( 28.53%) 3081875980 ( 31.53%) 622.56
dns 4169 ( 0.02%) 1915428 ( 0.02%) 459.45
bgp 213 ( 0.00%) 65624 ( 0.00%) 308.09
napster 79 ( 0.00%) 48174 ( 0.00%) 609.80
realaud 33 ( 0.00%) 4423 ( 0.00%) 134.03
rtsp 1788 ( 0.01%) 139021 ( 0.00%) 77.75
icecast 12574 ( 0.07%) 15220463 ( 0.16%) 1210.47
hotline 29 ( 0.00%) 3004 ( 0.00%) 103.59
other 2654375 ( 15.30%) 1530494763 ( 15.66%) 576.59
udp 2522089 ( 14.54%) 643616872 ( 6.59%) 255.19
dns 1237163 ( 7.13%) 179941756 ( 1.84%) 145.45
realaud 19 ( 0.00%) 2672 ( 0.00%) 140.63
halflif 28 ( 0.00%) 4822 ( 0.00%) 172.21
starcra 24 ( 0.00%) 4536 ( 0.00%) 189.00
everque 18 ( 0.00%) 3289 ( 0.00%) 182.72
unreal 27 ( 0.00%) 7224 ( 0.00%) 267.56
quake 6052 ( 0.03%) 1052103 ( 0.01%) 173.84
cuseeme 1 ( 0.00%) 83 ( 0.00%) 83.00
other 1278717 ( 7.37%) 462584442 ( 4.73%) 361.76
icmp 892406 ( 5.14%) 74025599 ( 0.76%) 82.95
ipip 359 ( 0.00%) 46368 ( 0.00%) 129.16
ip6 1111 ( 0.01%) 154800 ( 0.00%) 139.33
other 9908 ( 0.06%) 1409744 ( 0.01%) 142.28
frag 2354 ( 0.01%) 2089584 ( 0.02%) 887.67
ip6 123462 ( 0.71%) 12264618 ( 0.13%) 99.34
tcp6 100528 ( 0.58%) 8207233 ( 0.08%) 81.64
http(s) 131 ( 0.00%) 151223 ( 0.00%) 1154.37
http(c) 96734 ( 0.56%) 7229029 ( 0.07%) 74.73
squid 50 ( 0.00%) 6284 ( 0.00%) 125.68
smtp 624 ( 0.00%) 200901 ( 0.00%) 321.96
ftp 52 ( 0.00%) 4131 ( 0.00%) 79.44
pop3 68 ( 0.00%) 6200 ( 0.00%) 91.18
ssh 33 ( 0.00%) 4845 ( 0.00%) 146.82
dns 24 ( 0.00%) 5376 ( 0.00%) 224.00
bgp 94 ( 0.00%) 11344 ( 0.00%) 120.68
other 2718 ( 0.02%) 587900 ( 0.01%) 216.30
udp6 16994 ( 0.10%) 3245535 ( 0.03%) 190.98
dns 15419 ( 0.09%) 2861014 ( 0.03%) 185.55
other 1575 ( 0.01%) 384521 ( 0.00%) 244.14
icmp6 5910 ( 0.03%) 807770 ( 0.01%) 136.68
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
tcpdump file: 200803180030.dump.gz (451.19 MB)