Traffic Trace Info
DumpFile: -
Id: 200803180300
StartTime: Tue Mar 18 03:00:01 2008
EndTime: Tue Mar 18 03:15:00 2008
TotalTime: 899.47 seconds
TotalCapSize: 715.51MB CapLen: 96 bytes
# of packets: 12845416 (7020.00MB)
AvgRate: 69.64Mbps stddev:13.10M
IP flow (unique src/dst pair) Information
# of flows: 757411 (avg. 16.96 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.1% 4.7% 3.8% 2.8% 1.7% 1.3% 1.3% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 378129
Top 10 bandwidth usage (bytes/total in %):
10.3% 9.1% 7.6% 7.3% 5.4% 5.4% 4.9% 4.3% 3.8% 3.8%
# of IPv6 addresses: 2004
Top 10 bandwidth usage (bytes/total in %):
13.8% 11.4% 9.4% 7.4% 6.7% 5.5% 5.4% 4.5% 4.3% 3.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803180300.pktlen.png)
detailed numbers
[ 32- 63]: 2788768
[ 64- 127]: 4022871
[ 128- 255]: 864223
[ 256- 511]: 540955
[ 512- 1023]: 304749
[ 1024- 2047]: 4323850
Protocol Breakdown
![[protocol breakdown chart]](200803180300.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 12845416 (100.00%) 7361002875 (100.00%) 573.05
ip 12820636 ( 99.81%) 7356927412 ( 99.94%) 573.83
tcp 10093685 ( 78.58%) 6838759656 ( 92.91%) 677.53
http(s) 2915905 ( 22.70%) 4034798615 ( 54.81%) 1383.72
http(c) 1460655 ( 11.37%) 133372532 ( 1.81%) 91.31
squid 429965 ( 3.35%) 306139353 ( 4.16%) 712.01
smtp 770340 ( 6.00%) 131725447 ( 1.79%) 171.00
ftp 153672 ( 1.20%) 50185229 ( 0.68%) 326.57
pop3 3842 ( 0.03%) 1958120 ( 0.03%) 509.66
imap 2415 ( 0.02%) 835681 ( 0.01%) 346.04
telnet 2648 ( 0.02%) 170410 ( 0.00%) 64.35
ssh 1936555 ( 15.08%) 871491186 ( 11.84%) 450.02
dns 2571 ( 0.02%) 695365 ( 0.01%) 270.46
bgp 197 ( 0.00%) 60178 ( 0.00%) 305.47
napster 32 ( 0.00%) 5139 ( 0.00%) 160.59
realaud 21 ( 0.00%) 2487 ( 0.00%) 118.43
rtsp 39193 ( 0.31%) 55506654 ( 0.75%) 1416.24
icecast 11562 ( 0.09%) 14112710 ( 0.19%) 1220.61
hotline 13 ( 0.00%) 1386 ( 0.00%) 106.62
other 2364099 ( 18.40%) 1237699164 ( 16.81%) 523.54
udp 1753346 ( 13.65%) 440345650 ( 5.98%) 251.15
dns 1160653 ( 9.04%) 176837196 ( 2.40%) 152.36
realaud 33 ( 0.00%) 3967 ( 0.00%) 120.21
halflif 16 ( 0.00%) 1652 ( 0.00%) 103.25
starcra 31 ( 0.00%) 6902 ( 0.00%) 222.65
everque 29 ( 0.00%) 4755 ( 0.00%) 163.97
unreal 16 ( 0.00%) 2175 ( 0.00%) 135.94
quake 13 ( 0.00%) 2258 ( 0.00%) 173.69
cuseeme 3 ( 0.00%) 238 ( 0.00%) 79.33
other 592522 ( 4.61%) 263468474 ( 3.58%) 444.66
icmp 962819 ( 7.50%) 76308466 ( 1.04%) 79.26
ipip 335 ( 0.00%) 40338 ( 0.00%) 120.41
ip6 1075 ( 0.01%) 151167 ( 0.00%) 140.62
other 9376 ( 0.07%) 1322135 ( 0.02%) 141.01
frag 1596 ( 0.01%) 1422001 ( 0.02%) 890.98
ip6 24778 ( 0.19%) 4075343 ( 0.06%) 164.47
tcp6 4577 ( 0.04%) 679720 ( 0.01%) 148.51
http(s) 8 ( 0.00%) 692 ( 0.00%) 86.50
http(c) 1718 ( 0.01%) 164235 ( 0.00%) 95.60
smtp 631 ( 0.00%) 243746 ( 0.00%) 386.29
pop3 43 ( 0.00%) 4279 ( 0.00%) 99.51
ssh 110 ( 0.00%) 21445 ( 0.00%) 194.95
bgp 100 ( 0.00%) 20138 ( 0.00%) 201.38
other 1967 ( 0.02%) 225185 ( 0.00%) 114.48
udp6 14709 ( 0.11%) 2635564 ( 0.04%) 179.18
dns 12814 ( 0.10%) 2094768 ( 0.03%) 163.47
quake 1 ( 0.00%) 137 ( 0.00%) 137.00
other 1894 ( 0.01%) 540659 ( 0.01%) 285.46
icmp6 5461 ( 0.04%) 754405 ( 0.01%) 138.14
pim6 28 ( 0.00%) 3808 ( 0.00%) 136.00
other6 3 ( 0.00%) 1846 ( 0.00%) 615.33
tcpdump file: 200803180300.dump.gz (326.20 MB)