Traffic Trace Info
DumpFile: -
Id: 200803200330
StartTime: Thu Mar 20 03:30:00 2008
EndTime: Thu Mar 20 03:45:00 2008
TotalTime: 899.77 seconds
TotalCapSize: 644.18MB CapLen: 96 bytes
# of packets: 11932897 (7394.16MB)
AvgRate: 68.94Mbps stddev:10.42M
IP flow (unique src/dst pair) Information
# of flows: 702942 (avg. 16.98 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.2% 2.5% 1.6% 1.5% 1.4% 1.3% 1.2% 1.2% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 401403
Top 10 bandwidth usage (bytes/total in %):
12.2% 11.2% 7.9% 6.9% 5.6% 5.3% 4.9% 2.8% 2.7% 2.6%
# of IPv6 addresses: 1771
Top 10 bandwidth usage (bytes/total in %):
52.5% 48.9% 7.1% 6.0% 5.5% 3.4% 3.3% 3.0% 2.7% 2.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803200330.pktlen.png)
detailed numbers
[ 32- 63]: 2472638
[ 64- 127]: 3278973
[ 128- 255]: 745232
[ 256- 511]: 458858
[ 512- 1023]: 295035
[ 1024- 2047]: 4682161
Protocol Breakdown
![[protocol breakdown chart]](200803200330.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 11932897 (100.00%) 7753340939 (100.00%) 649.75
ip 11903866 ( 99.76%) 7743948783 ( 99.88%) 650.54
tcp 9056215 ( 75.89%) 7012599555 ( 90.45%) 774.34
http(s) 3102706 ( 26.00%) 4308065159 ( 55.56%) 1388.49
http(c) 1650555 ( 13.83%) 132322624 ( 1.71%) 80.17
squid 926720 ( 7.77%) 766772463 ( 9.89%) 827.40
smtp 771557 ( 6.47%) 141492114 ( 1.82%) 183.39
nntp 7688 ( 0.06%) 465870 ( 0.01%) 60.60
ftp 13782 ( 0.12%) 1477813 ( 0.02%) 107.23
pop3 3868 ( 0.03%) 1947771 ( 0.03%) 503.56
imap 1149 ( 0.01%) 274272 ( 0.00%) 238.70
telnet 3630 ( 0.03%) 230759 ( 0.00%) 63.57
ssh 427996 ( 3.59%) 413447632 ( 5.33%) 966.01
dns 3888 ( 0.03%) 2002249 ( 0.03%) 514.98
bgp 191 ( 0.00%) 54830 ( 0.00%) 287.07
napster 76 ( 0.00%) 4980 ( 0.00%) 65.53
realaud 30 ( 0.00%) 6143 ( 0.00%) 204.77
rtsp 72 ( 0.00%) 18274 ( 0.00%) 253.81
icecast 6346 ( 0.05%) 3186543 ( 0.04%) 502.13
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 2135955 ( 17.90%) 1240829693 ( 16.00%) 580.93
udp 2246243 ( 18.82%) 679851476 ( 8.77%) 302.66
dns 1063845 ( 8.92%) 158804952 ( 2.05%) 149.27
realaud 8716 ( 0.07%) 5454474 ( 0.07%) 625.80
halflif 18 ( 0.00%) 1331 ( 0.00%) 73.94
starcra 19 ( 0.00%) 3035 ( 0.00%) 159.74
everque 53 ( 0.00%) 7016 ( 0.00%) 132.38
unreal 24 ( 0.00%) 2927 ( 0.00%) 121.96
quake 18 ( 0.00%) 6608 ( 0.00%) 367.11
cuseeme 298 ( 0.00%) 146439 ( 0.00%) 491.41
other 1173176 ( 9.83%) 515367919 ( 6.65%) 439.29
icmp 594332 ( 4.98%) 50344609 ( 0.65%) 84.71
ipip 337 ( 0.00%) 41192 ( 0.00%) 122.23
ip6 1097 ( 0.01%) 151489 ( 0.00%) 138.09
other 5642 ( 0.05%) 960462 ( 0.01%) 170.23
frag 1457 ( 0.01%) 1279398 ( 0.02%) 878.10
ip6 29031 ( 0.24%) 9392156 ( 0.12%) 323.52
tcp6 4053 ( 0.03%) 743682 ( 0.01%) 183.49
http(s) 53 ( 0.00%) 60540 ( 0.00%) 1142.26
http(c) 829 ( 0.01%) 88344 ( 0.00%) 106.57
smtp 970 ( 0.01%) 344169 ( 0.00%) 354.81
pop3 34 ( 0.00%) 3128 ( 0.00%) 92.00
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 87 ( 0.00%) 10334 ( 0.00%) 118.78
other 2073 ( 0.02%) 236532 ( 0.00%) 114.10
udp6 16017 ( 0.13%) 3302822 ( 0.04%) 206.21
dns 14369 ( 0.12%) 2824205 ( 0.04%) 196.55
halflif 1 ( 0.00%) 137 ( 0.00%) 137.00
everque 1 ( 0.00%) 116 ( 0.00%) 116.00
other 1646 ( 0.01%) 478364 ( 0.01%) 290.62
icmp6 5419 ( 0.05%) 752423 ( 0.01%) 138.85
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 3512 ( 0.03%) 4589149 ( 0.06%) 1306.71
tcpdump file: 200803200330.dump.gz (298.80 MB)