Traffic Trace Info
DumpFile: -
Id: 200803180830
StartTime: Tue Mar 18 08:30:00 2008
EndTime: Tue Mar 18 08:45:00 2008
TotalTime: 900.24 seconds
TotalCapSize: 616.48MB CapLen: 96 bytes
# of packets: 10673272 (6440.33MB)
AvgRate: 60.00Mbps stddev:11.76M
IP flow (unique src/dst pair) Information
# of flows: 537244 (avg. 19.87 pkts/flow)
Top 10 big flow size (bytes/total in %):
16.2% 5.8% 2.3% 2.3% 1.5% 1.4% 1.3% 1.2% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 283723
Top 10 bandwidth usage (bytes/total in %):
24.0% 16.6% 6.0% 5.9% 5.3% 5.1% 4.6% 3.5% 2.6% 2.4%
# of IPv6 addresses: 2170
Top 10 bandwidth usage (bytes/total in %):
11.6% 11.6% 9.0% 8.8% 8.1% 7.9% 7.7% 4.8% 4.8% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803180830.pktlen.png)
detailed numbers
[ 32- 63]: 1682928
[ 64- 127]: 3748477
[ 128- 255]: 675061
[ 256- 511]: 326717
[ 512- 1023]: 223926
[ 1024- 2047]: 4016163
Protocol Breakdown
![[protocol breakdown chart]](200803180830.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 10673272 (100.00%) 6753176610 (100.00%) 632.72
ip 10650220 ( 99.78%) 6748595295 ( 99.93%) 633.66
tcp 9048355 ( 84.78%) 6497938324 ( 96.22%) 718.13
http(s) 2959609 ( 27.73%) 4011510599 ( 59.40%) 1355.42
http(c) 1627329 ( 15.25%) 188254960 ( 2.79%) 115.68
squid 474088 ( 4.44%) 348952069 ( 5.17%) 736.05
smtp 649751 ( 6.09%) 107038614 ( 1.59%) 164.74
ftp 175116 ( 1.64%) 81280091 ( 1.20%) 464.15
pop3 8118 ( 0.08%) 3259996 ( 0.05%) 401.58
imap 5331 ( 0.05%) 1427320 ( 0.02%) 267.74
telnet 900 ( 0.01%) 57648 ( 0.00%) 64.05
ssh 1290177 ( 12.09%) 526142806 ( 7.79%) 407.81
dns 3586 ( 0.03%) 1857848 ( 0.03%) 518.08
bgp 334 ( 0.00%) 172958 ( 0.00%) 517.84
napster 4946 ( 0.05%) 337804 ( 0.01%) 68.30
realaud 2 ( 0.00%) 120 ( 0.00%) 60.00
rtsp 2437 ( 0.02%) 1169272 ( 0.02%) 479.80
icecast 12594 ( 0.12%) 15233484 ( 0.23%) 1209.58
hotline 5 ( 0.00%) 305 ( 0.00%) 61.00
other 1834031 ( 17.18%) 1211242370 ( 17.94%) 660.43
udp 1191269 ( 11.16%) 213366814 ( 3.16%) 179.11
dns 845391 ( 7.92%) 128557859 ( 1.90%) 152.07
realaud 20 ( 0.00%) 2168 ( 0.00%) 108.40
halflif 18 ( 0.00%) 1366 ( 0.00%) 75.89
starcra 26 ( 0.00%) 4932 ( 0.00%) 189.69
everque 16 ( 0.00%) 2081 ( 0.00%) 130.06
unreal 6 ( 0.00%) 857 ( 0.00%) 142.83
quake 8 ( 0.00%) 1950 ( 0.00%) 243.75
cuseeme 6 ( 0.00%) 403 ( 0.00%) 67.17
other 345751 ( 3.24%) 84784014 ( 1.26%) 245.22
icmp 399262 ( 3.74%) 35690992 ( 0.53%) 89.39
ipip 325 ( 0.00%) 40636 ( 0.00%) 125.03
ip6 1021 ( 0.01%) 141374 ( 0.00%) 138.47
other 9988 ( 0.09%) 1417155 ( 0.02%) 141.89
frag 4923 ( 0.05%) 4017713 ( 0.06%) 816.11
ip6 23052 ( 0.22%) 4581315 ( 0.07%) 198.74
tcp6 4980 ( 0.05%) 1216323 ( 0.02%) 244.24
http(s) 123 ( 0.00%) 150273 ( 0.00%) 1221.73
http(c) 1935 ( 0.02%) 177640 ( 0.00%) 91.80
smtp 456 ( 0.00%) 115628 ( 0.00%) 253.57
pop3 61 ( 0.00%) 5550 ( 0.00%) 90.98
ssh 93 ( 0.00%) 19274 ( 0.00%) 207.25
bgp 69 ( 0.00%) 7528 ( 0.00%) 109.10
other 2243 ( 0.02%) 740430 ( 0.01%) 330.11
udp6 9810 ( 0.09%) 2290976 ( 0.03%) 233.53
dns 7676 ( 0.07%) 1564808 ( 0.02%) 203.86
realaud 1 ( 0.00%) 480 ( 0.00%) 480.00
starcra 1 ( 0.00%) 552 ( 0.00%) 552.00
everque 4 ( 0.00%) 911 ( 0.00%) 227.75
other 2128 ( 0.02%) 724225 ( 0.01%) 340.33
icmp6 8232 ( 0.08%) 1069936 ( 0.02%) 129.97
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
tcpdump file: 200803180830.dump.gz (275.53 MB)