Traffic Trace Info
DumpFile: -
Id: 200803181030
StartTime: Tue Mar 18 10:30:00 2008
EndTime: Tue Mar 18 10:45:00 2008
TotalTime: 900.16 seconds
TotalCapSize: 823.48MB CapLen: 96 bytes
# of packets: 14624149 (9594.51MB)
AvgRate: 89.41Mbps stddev:17.48M
IP flow (unique src/dst pair) Information
# of flows: 584705 (avg. 25.01 pkts/flow)
Top 10 big flow size (bytes/total in %):
9.1% 6.3% 6.2% 4.0% 3.0% 1.0% 1.0% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 318432
Top 10 bandwidth usage (bytes/total in %):
14.0% 10.5% 9.3% 8.7% 6.4% 6.3% 4.9% 4.8% 4.2% 4.1%
# of IPv6 addresses: 1970
Top 10 bandwidth usage (bytes/total in %):
19.6% 16.0% 8.3% 7.4% 6.5% 6.2% 5.5% 5.5% 4.8% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803181030.pktlen.png)
detailed numbers
[ 32- 63]: 2650303
[ 64- 127]: 4335586
[ 128- 255]: 853363
[ 256- 511]: 353263
[ 512- 1023]: 287889
[ 1024- 2047]: 6143745
Protocol Breakdown
![[protocol breakdown chart]](200803181030.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 14624149 (100.00%) 10060570580 (100.00%) 687.94
ip 14598926 ( 99.83%) 10055872921 ( 99.95%) 688.81
tcp 12494252 ( 85.44%) 9727921881 ( 96.69%) 778.59
http(s) 4493568 ( 30.73%) 6067487157 ( 60.31%) 1350.26
http(c) 2500160 ( 17.10%) 247507973 ( 2.46%) 99.00
squid 492209 ( 3.37%) 375459109 ( 3.73%) 762.80
smtp 561752 ( 3.84%) 100025322 ( 0.99%) 178.06
ftp 152714 ( 1.04%) 67963513 ( 0.68%) 445.04
pop3 15996 ( 0.11%) 9209253 ( 0.09%) 575.72
imap 4299 ( 0.03%) 961083 ( 0.01%) 223.56
telnet 541 ( 0.00%) 34614 ( 0.00%) 63.98
ssh 1333428 ( 9.12%) 542827238 ( 5.40%) 407.09
dns 4216 ( 0.03%) 1900759 ( 0.02%) 450.84
bgp 182 ( 0.00%) 48612 ( 0.00%) 267.10
napster 69 ( 0.00%) 9569 ( 0.00%) 138.68
realaud 34 ( 0.00%) 4472 ( 0.00%) 131.53
rtsp 70411 ( 0.48%) 81419618 ( 0.81%) 1156.35
icecast 15979 ( 0.11%) 17736687 ( 0.18%) 1110.00
hotline 12 ( 0.00%) 1336 ( 0.00%) 111.33
other 2848681 ( 19.48%) 2215325506 ( 22.02%) 777.67
udp 1476299 ( 10.09%) 269459041 ( 2.68%) 182.52
dns 881762 ( 6.03%) 131010331 ( 1.30%) 148.58
realaud 8720 ( 0.06%) 5455668 ( 0.05%) 625.65
halflif 15 ( 0.00%) 1678 ( 0.00%) 111.87
starcra 32 ( 0.00%) 5979 ( 0.00%) 186.84
everque 36 ( 0.00%) 4061 ( 0.00%) 112.81
unreal 16 ( 0.00%) 6995 ( 0.00%) 437.19
quake 7 ( 0.00%) 1106 ( 0.00%) 158.00
cuseeme 7 ( 0.00%) 444 ( 0.00%) 63.43
other 585672 ( 4.00%) 132959107 ( 1.32%) 227.02
icmp 577334 ( 3.95%) 48930969 ( 0.49%) 84.75
ipip 397 ( 0.00%) 50018 ( 0.00%) 125.99
ip6 1057 ( 0.01%) 148342 ( 0.00%) 140.34
other 49587 ( 0.34%) 9362670 ( 0.09%) 188.81
frag 1297 ( 0.01%) 1119468 ( 0.01%) 863.12
ip6 25223 ( 0.17%) 4697659 ( 0.05%) 186.25
tcp6 3755 ( 0.03%) 651022 ( 0.01%) 173.37
http(s) 122 ( 0.00%) 148514 ( 0.00%) 1217.33
http(c) 1399 ( 0.01%) 133936 ( 0.00%) 95.74
smtp 384 ( 0.00%) 148367 ( 0.00%) 386.37
pop3 36 ( 0.00%) 3324 ( 0.00%) 92.33
ssh 6 ( 0.00%) 444 ( 0.00%) 74.00
bgp 78 ( 0.00%) 10026 ( 0.00%) 128.54
other 1730 ( 0.01%) 206411 ( 0.00%) 119.31
udp6 15989 ( 0.11%) 3289066 ( 0.03%) 205.71
dns 13953 ( 0.10%) 2689916 ( 0.03%) 192.78
everque 2 ( 0.00%) 258 ( 0.00%) 129.00
other 2034 ( 0.01%) 598892 ( 0.01%) 294.44
icmp6 5437 ( 0.04%) 742569 ( 0.01%) 136.58
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 12 ( 0.00%) 10922 ( 0.00%) 910.17
tcpdump file: 200803181030.dump.gz (364.43 MB)