Traffic Trace Info
DumpFile: -
Id: 200803200300
StartTime: Thu Mar 20 03:00:01 2008
EndTime: Thu Mar 20 03:15:01 2008
TotalTime: 899.88 seconds
TotalCapSize: 593.12MB CapLen: 96 bytes
# of packets: 10976168 (6268.85MB)
AvgRate: 61.67Mbps stddev:11.47M
IP flow (unique src/dst pair) Information
# of flows: 671024 (avg. 16.36 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.8% 4.3% 1.7% 1.4% 1.2% 1.1% 0.9% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 372159
Top 10 bandwidth usage (bytes/total in %):
12.4% 12.2% 8.0% 7.0% 6.2% 5.9% 4.3% 4.3% 3.5% 2.6%
# of IPv6 addresses: 1447
Top 10 bandwidth usage (bytes/total in %):
51.8% 48.0% 10.3% 8.5% 3.7% 3.5% 3.2% 2.8% 2.8% 2.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803200300.pktlen.png)
detailed numbers
[ 32- 63]: 2407781
[ 64- 127]: 3132868
[ 128- 255]: 812063
[ 256- 511]: 474675
[ 512- 1023]: 299972
[ 1024- 2047]: 3848809
Protocol Breakdown
![[protocol breakdown chart]](200803200300.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 10976168 (100.00%) 6573365131 (100.00%) 598.88
ip 10945457 ( 99.72%) 6564429377 ( 99.86%) 599.74
tcp 8251923 ( 75.18%) 5960710115 ( 90.68%) 722.34
http(s) 2752585 ( 25.08%) 3795269214 ( 57.74%) 1378.80
http(c) 1414252 ( 12.88%) 120737365 ( 1.84%) 85.37
squid 633277 ( 5.77%) 418021990 ( 6.36%) 660.09
smtp 778148 ( 7.09%) 118256708 ( 1.80%) 151.97
nntp 225096 ( 2.05%) 13770545 ( 0.21%) 61.18
ftp 10730 ( 0.10%) 1866302 ( 0.03%) 173.93
pop3 3660 ( 0.03%) 2031365 ( 0.03%) 555.02
imap 1020 ( 0.01%) 147824 ( 0.00%) 144.93
telnet 1834 ( 0.02%) 117921 ( 0.00%) 64.30
ssh 530222 ( 4.83%) 410650363 ( 6.25%) 774.49
dns 2676 ( 0.02%) 722705 ( 0.01%) 270.07
bgp 195 ( 0.00%) 63585 ( 0.00%) 326.08
napster 97 ( 0.00%) 10677 ( 0.00%) 110.07
rtsp 87 ( 0.00%) 20608 ( 0.00%) 236.87
icecast 8551 ( 0.08%) 4999459 ( 0.08%) 584.66
hotline 13 ( 0.00%) 3607 ( 0.00%) 277.46
other 1889480 ( 17.21%) 1074019877 ( 16.34%) 568.42
udp 2091164 ( 19.05%) 552382556 ( 8.40%) 264.15
dns 1063281 ( 9.69%) 157351700 ( 2.39%) 147.99
realaud 8158 ( 0.07%) 5106668 ( 0.08%) 625.97
halflif 13 ( 0.00%) 1382 ( 0.00%) 106.31
starcra 18 ( 0.00%) 3201 ( 0.00%) 177.83
everque 32 ( 0.00%) 5993 ( 0.00%) 187.28
unreal 8 ( 0.00%) 1149 ( 0.00%) 143.62
quake 7 ( 0.00%) 829 ( 0.00%) 118.43
cuseeme 4 ( 0.00%) 589 ( 0.00%) 147.25
other 1019507 ( 9.29%) 389845754 ( 5.93%) 382.39
icmp 595832 ( 5.43%) 50434806 ( 0.77%) 84.65
ipip 320 ( 0.00%) 38873 ( 0.00%) 121.48
ip6 1045 ( 0.01%) 142896 ( 0.00%) 136.74
other 5173 ( 0.05%) 720131 ( 0.01%) 139.21
frag 1858 ( 0.02%) 1592525 ( 0.02%) 857.12
ip6 30711 ( 0.28%) 8935754 ( 0.14%) 290.96
tcp6 4647 ( 0.04%) 1001692 ( 0.02%) 215.56
http(s) 41 ( 0.00%) 3478 ( 0.00%) 84.83
http(c) 801 ( 0.01%) 83230 ( 0.00%) 103.91
smtp 1613 ( 0.01%) 667875 ( 0.01%) 414.06
ftp 1 ( 0.00%) 74 ( 0.00%) 74.00
pop3 39 ( 0.00%) 3546 ( 0.00%) 90.92
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
bgp 62 ( 0.00%) 6589 ( 0.00%) 106.27
other 2089 ( 0.02%) 236826 ( 0.00%) 113.37
udp6 17948 ( 0.16%) 3014877 ( 0.05%) 167.98
dns 16854 ( 0.15%) 2782199 ( 0.04%) 165.08
other 1094 ( 0.01%) 232678 ( 0.00%) 212.69
icmp6 4806 ( 0.04%) 627208 ( 0.01%) 130.51
pim6 26 ( 0.00%) 3536 ( 0.00%) 136.00
other6 3284 ( 0.03%) 4288441 ( 0.07%) 1305.86
tcpdump file: 200803200300.dump.gz (278.88 MB)