Traffic Trace Info
DumpFile: -
Id: 200803200100
StartTime: Thu Mar 20 01:00:00 2008
EndTime: Thu Mar 20 01:15:01 2008
TotalTime: 900.63 seconds
TotalCapSize: 687.14MB CapLen: 96 bytes
# of packets: 12575839 (7624.14MB)
AvgRate: 71.01Mbps stddev:10.79M
IP flow (unique src/dst pair) Information
# of flows: 670637 (avg. 18.75 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.9% 3.0% 2.6% 1.5% 1.5% 1.4% 1.4% 1.2% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 355979
Top 10 bandwidth usage (bytes/total in %):
12.5% 11.5% 5.7% 5.5% 5.3% 5.0% 3.0% 3.0% 2.7% 2.7%
# of IPv6 addresses: 1458
Top 10 bandwidth usage (bytes/total in %):
62.1% 62.0% 20.0% 18.7% 3.4% 2.8% 1.3% 1.2% 1.1% 1.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803200100.pktlen.png)
detailed numbers
[ 32- 63]: 2703273
[ 64- 127]: 3496896
[ 128- 255]: 751273
[ 256- 511]: 457324
[ 512- 1023]: 430936
[ 1024- 2047]: 4736137
Protocol Breakdown
![[protocol breakdown chart]](200803200100.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 12575839 (100.00%) 7994486626 (100.00%) 635.70
ip 12346909 ( 98.18%) 7970741060 ( 99.70%) 645.57
tcp 9662719 ( 76.84%) 7404809345 ( 92.62%) 766.33
http(s) 3513199 ( 27.94%) 4866485483 ( 60.87%) 1385.20
http(c) 1821732 ( 14.49%) 162144537 ( 2.03%) 89.01
squid 907007 ( 7.21%) 661886811 ( 8.28%) 729.75
smtp 739266 ( 5.88%) 117649563 ( 1.47%) 159.14
nntp 4 ( 0.00%) 246 ( 0.00%) 61.50
ftp 15404 ( 0.12%) 1694311 ( 0.02%) 109.99
pop3 5499 ( 0.04%) 2215740 ( 0.03%) 402.94
imap 9199 ( 0.07%) 1703304 ( 0.02%) 185.16
telnet 1385 ( 0.01%) 89399 ( 0.00%) 64.55
ssh 456938 ( 3.63%) 408732232 ( 5.11%) 894.50
dns 2201 ( 0.02%) 244173 ( 0.00%) 110.94
bgp 218 ( 0.00%) 78894 ( 0.00%) 361.90
napster 72 ( 0.00%) 30805 ( 0.00%) 427.85
realaud 30 ( 0.00%) 3916 ( 0.00%) 130.53
rtsp 114 ( 0.00%) 23294 ( 0.00%) 204.33
icecast 11012 ( 0.09%) 7662510 ( 0.10%) 695.83
hotline 11 ( 0.00%) 2074 ( 0.00%) 188.55
other 2179408 ( 17.33%) 1174160853 ( 14.69%) 538.75
udp 2069809 ( 16.46%) 513114544 ( 6.42%) 247.90
dns 1153361 ( 9.17%) 170559136 ( 2.13%) 147.88
realaud 8700 ( 0.07%) 5457162 ( 0.07%) 627.26
halflif 16 ( 0.00%) 1798 ( 0.00%) 112.38
starcra 22 ( 0.00%) 3626 ( 0.00%) 164.82
everque 41 ( 0.00%) 5071 ( 0.00%) 123.68
unreal 45 ( 0.00%) 4866 ( 0.00%) 108.13
quake 10 ( 0.00%) 792 ( 0.00%) 79.20
cuseeme 2 ( 0.00%) 142 ( 0.00%) 71.00
other 907445 ( 7.22%) 337019984 ( 4.22%) 371.39
icmp 607509 ( 4.83%) 51847583 ( 0.65%) 85.34
ipip 375 ( 0.00%) 46084 ( 0.00%) 122.89
ip6 1127 ( 0.01%) 157972 ( 0.00%) 140.17
other 5370 ( 0.04%) 765532 ( 0.01%) 142.56
frag 2471 ( 0.02%) 1797609 ( 0.02%) 727.48
ip6 228930 ( 1.82%) 23745566 ( 0.30%) 103.72
tcp6 202970 ( 1.61%) 15445033 ( 0.19%) 76.10
http(s) 5 ( 0.00%) 612 ( 0.00%) 122.40
http(c) 752 ( 0.01%) 90663 ( 0.00%) 120.56
smtp 733 ( 0.01%) 352894 ( 0.00%) 481.44
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
bgp 80 ( 0.00%) 9102 ( 0.00%) 113.78
other 201399 ( 1.60%) 14991688 ( 0.19%) 74.44
udp6 17484 ( 0.14%) 3181911 ( 0.04%) 181.99
dns 16322 ( 0.13%) 2944834 ( 0.04%) 180.42
everque 1 ( 0.00%) 137 ( 0.00%) 137.00
other 1161 ( 0.01%) 236940 ( 0.00%) 204.08
icmp6 5046 ( 0.04%) 686518 ( 0.01%) 136.05
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 3400 ( 0.03%) 4428024 ( 0.06%) 1302.36
tcpdump file: 200803200100.dump.gz (316.67 MB)