Traffic Trace Info
DumpFile: -
Id: 200803180745
StartTime: Tue Mar 18 07:45:00 2008
EndTime: Tue Mar 18 08:00:01 2008
TotalTime: 900.30 seconds
TotalCapSize: 662.33MB CapLen: 96 bytes
# of packets: 11559816 (7448.51MB)
AvgRate: 69.39Mbps stddev:14.27M
IP flow (unique src/dst pair) Information
# of flows: 655325 (avg. 17.64 pkts/flow)
Top 10 big flow size (bytes/total in %):
13.3% 6.7% 5.0% 2.0% 2.0% 1.4% 1.3% 1.2% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 388794
Top 10 bandwidth usage (bytes/total in %):
18.8% 14.8% 13.3% 9.0% 6.9% 6.9% 6.7% 5.1% 4.2% 2.8%
# of IPv6 addresses: 1956
Top 10 bandwidth usage (bytes/total in %):
23.0% 17.2% 8.9% 6.8% 6.8% 5.9% 5.6% 5.6% 5.1% 4.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803180745.pktlen.png)
detailed numbers
[ 32- 63]: 1828953
[ 64- 127]: 3649633
[ 128- 255]: 728620
[ 256- 511]: 362140
[ 512- 1023]: 214839
[ 1024- 2047]: 4775631
Protocol Breakdown
![[protocol breakdown chart]](200803180745.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 11559816 (100.00%) 7810325056 (100.00%) 675.64
ip 11533480 ( 99.77%) 7805404029 ( 99.94%) 676.76
tcp 9634191 ( 83.34%) 7489174125 ( 95.89%) 777.35
http(s) 2883838 ( 24.95%) 3906251190 ( 50.01%) 1354.53
http(c) 1293733 ( 11.19%) 150414416 ( 1.93%) 116.26
squid 271538 ( 2.35%) 166850605 ( 2.14%) 614.47
smtp 785521 ( 6.80%) 123156657 ( 1.58%) 156.78
nntp 17 ( 0.00%) 1054 ( 0.00%) 62.00
ftp 224122 ( 1.94%) 119665495 ( 1.53%) 533.93
pop3 13134 ( 0.11%) 7602304 ( 0.10%) 578.83
imap 4009 ( 0.03%) 840397 ( 0.01%) 209.63
telnet 1256 ( 0.01%) 81445 ( 0.00%) 64.84
ssh 1283622 ( 11.10%) 521729315 ( 6.68%) 406.45
dns 2001 ( 0.02%) 146800 ( 0.00%) 73.36
bgp 187 ( 0.00%) 53712 ( 0.00%) 287.23
napster 22 ( 0.00%) 2219 ( 0.00%) 100.86
realaud 27 ( 0.00%) 3272 ( 0.00%) 121.19
rtsp 1549 ( 0.01%) 105643 ( 0.00%) 68.20
icecast 12608 ( 0.11%) 15299402 ( 0.20%) 1213.47
hotline 12 ( 0.00%) 1320 ( 0.00%) 110.00
other 2856992 ( 24.71%) 2476968699 ( 31.71%) 866.98
udp 1368265 ( 11.84%) 270387779 ( 3.46%) 197.61
dns 871134 ( 7.54%) 130822118 ( 1.67%) 150.17
realaud 28 ( 0.00%) 3369 ( 0.00%) 120.32
halflif 18 ( 0.00%) 2419 ( 0.00%) 134.39
starcra 32 ( 0.00%) 6443 ( 0.00%) 201.34
everque 28 ( 0.00%) 4012 ( 0.00%) 143.29
unreal 12 ( 0.00%) 1697 ( 0.00%) 141.42
quake 13 ( 0.00%) 1613 ( 0.00%) 124.08
cuseeme 6 ( 0.00%) 447 ( 0.00%) 74.50
other 496972 ( 4.30%) 139539889 ( 1.79%) 280.78
icmp 519749 ( 4.50%) 44263297 ( 0.57%) 85.16
ipip 358 ( 0.00%) 44430 ( 0.00%) 124.11
ip6 1025 ( 0.01%) 138826 ( 0.00%) 135.44
other 9892 ( 0.09%) 1395572 ( 0.02%) 141.08
frag 4856 ( 0.04%) 3937759 ( 0.05%) 810.91
ip6 26336 ( 0.23%) 4921027 ( 0.06%) 186.86
tcp6 4494 ( 0.04%) 830723 ( 0.01%) 184.85
http(s) 5 ( 0.00%) 612 ( 0.00%) 122.40
http(c) 1560 ( 0.01%) 154448 ( 0.00%) 99.01
smtp 1002 ( 0.01%) 450914 ( 0.01%) 450.01
pop3 37 ( 0.00%) 3282 ( 0.00%) 88.70
bgp 89 ( 0.00%) 14685 ( 0.00%) 165.00
other 1801 ( 0.02%) 206782 ( 0.00%) 114.82
udp6 16148 ( 0.14%) 3342015 ( 0.04%) 206.96
dns 14136 ( 0.12%) 2751334 ( 0.04%) 194.63
everque 2 ( 0.00%) 322 ( 0.00%) 161.00
other 2010 ( 0.02%) 590359 ( 0.01%) 293.71
icmp6 5663 ( 0.05%) 744073 ( 0.01%) 131.39
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
tcpdump file: 200803180745.dump.gz (295.02 MB)