Traffic Trace Info
DumpFile: -
Id: 200803200245
StartTime: Thu Mar 20 02:45:00 2008
EndTime: Thu Mar 20 03:00:01 2008
TotalTime: 900.62 seconds
TotalCapSize: 618.90MB CapLen: 96 bytes
# of packets: 11414566 (6725.72MB)
AvgRate: 62.64Mbps stddev:7.88M
IP flow (unique src/dst pair) Information
# of flows: 677983 (avg. 16.84 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.9% 3.0% 1.7% 1.6% 1.6% 1.4% 1.2% 1.1% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 357359
Top 10 bandwidth usage (bytes/total in %):
13.7% 12.6% 7.7% 6.2% 6.0% 4.9% 4.1% 3.2% 3.0% 3.0%
# of IPv6 addresses: 1395
Top 10 bandwidth usage (bytes/total in %):
42.4% 42.4% 32.1% 29.9% 3.4% 3.0% 2.1% 1.9% 1.9% 1.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803200245.pktlen.png)
detailed numbers
[ 32- 63]: 2506108
[ 64- 127]: 3225872
[ 128- 255]: 839709
[ 256- 511]: 374116
[ 512- 1023]: 270648
[ 1024- 2047]: 4198113
Protocol Breakdown
![[protocol breakdown chart]](200803200245.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 11414566 (100.00%) 7052423705 (100.00%) 617.84
ip 11301154 ( 99.01%) 7037508554 ( 99.79%) 622.72
tcp 8592438 ( 75.28%) 6515350469 ( 92.38%) 758.27
http(s) 2961134 ( 25.94%) 4107320179 ( 58.24%) 1387.08
http(c) 1557396 ( 13.64%) 133906829 ( 1.90%) 85.98
squid 804085 ( 7.04%) 613451204 ( 8.70%) 762.92
smtp 718595 ( 6.30%) 104229460 ( 1.48%) 145.05
nntp 36282 ( 0.32%) 2222751 ( 0.03%) 61.26
ftp 10848 ( 0.10%) 1239132 ( 0.02%) 114.23
pop3 2581 ( 0.02%) 1037154 ( 0.01%) 401.84
imap 5180 ( 0.05%) 3775799 ( 0.05%) 728.92
telnet 1710 ( 0.01%) 109987 ( 0.00%) 64.32
ssh 537320 ( 4.71%) 437892322 ( 6.21%) 814.96
dns 3803 ( 0.03%) 1444384 ( 0.02%) 379.80
bgp 201 ( 0.00%) 60888 ( 0.00%) 302.93
napster 6 ( 0.00%) 421 ( 0.00%) 70.17
realaud 2 ( 0.00%) 120 ( 0.00%) 60.00
rtsp 109 ( 0.00%) 25841 ( 0.00%) 237.07
icecast 6777 ( 0.06%) 3272644 ( 0.05%) 482.90
other 1946401 ( 17.05%) 1105360874 ( 15.67%) 567.90
udp 2030615 ( 17.79%) 464636120 ( 6.59%) 228.82
dns 1126204 ( 9.87%) 164929612 ( 2.34%) 146.45
realaud 8708 ( 0.08%) 5455879 ( 0.08%) 626.54
halflif 12 ( 0.00%) 1869 ( 0.00%) 155.75
starcra 40 ( 0.00%) 7017 ( 0.00%) 175.43
everque 51 ( 0.00%) 7921 ( 0.00%) 155.31
unreal 8 ( 0.00%) 1256 ( 0.00%) 157.00
quake 9 ( 0.00%) 2030 ( 0.00%) 225.56
cuseeme 3 ( 0.00%) 406 ( 0.00%) 135.33
other 895491 ( 7.85%) 294175853 ( 4.17%) 328.51
icmp 671826 ( 5.89%) 56644704 ( 0.80%) 84.31
ipip 329 ( 0.00%) 39488 ( 0.00%) 120.02
ip6 1031 ( 0.01%) 140615 ( 0.00%) 136.39
other 4915 ( 0.04%) 697158 ( 0.01%) 141.84
frag 1623 ( 0.01%) 1425115 ( 0.02%) 878.07
ip6 113410 ( 0.99%) 14915031 ( 0.21%) 131.51
tcp6 89142 ( 0.78%) 7038329 ( 0.10%) 78.96
http(s) 111 ( 0.00%) 143691 ( 0.00%) 1294.51
http(c) 600 ( 0.01%) 64106 ( 0.00%) 106.84
smtp 643 ( 0.01%) 245005 ( 0.00%) 381.03
ftp 2 ( 0.00%) 148 ( 0.00%) 74.00
pop3 202 ( 0.00%) 18124 ( 0.00%) 89.72
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 67 ( 0.00%) 7221 ( 0.00%) 107.78
other 87510 ( 0.77%) 6559399 ( 0.09%) 74.96
udp6 15790 ( 0.14%) 2757323 ( 0.04%) 174.62
dns 14661 ( 0.13%) 2497657 ( 0.04%) 170.36
other 1129 ( 0.01%) 259666 ( 0.00%) 230.00
icmp6 5023 ( 0.04%) 661691 ( 0.01%) 131.73
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 3424 ( 0.03%) 4453472 ( 0.06%) 1300.66
tcpdump file: 200803200245.dump.gz (290.43 MB)