Traffic Trace Info
DumpFile: -
Id: 200803200430
StartTime: Thu Mar 20 04:30:00 2008
EndTime: Thu Mar 20 04:45:01 2008
TotalTime: 900.49 seconds
TotalCapSize: 625.85MB CapLen: 96 bytes
# of packets: 11568056 (7011.02MB)
AvgRate: 65.31Mbps stddev:12.92M
IP flow (unique src/dst pair) Information
# of flows: 713260 (avg. 16.22 pkts/flow)
Top 10 big flow size (bytes/total in %):
7.6% 5.1% 1.8% 1.6% 1.4% 1.3% 0.7% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 393552
Top 10 bandwidth usage (bytes/total in %):
12.5% 11.7% 7.8% 7.8% 7.0% 6.0% 5.2% 5.2% 3.5% 3.0%
# of IPv6 addresses: 1547
Top 10 bandwidth usage (bytes/total in %):
50.8% 47.3% 10.7% 4.7% 4.3% 3.6% 3.0% 2.7% 2.6% 2.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803200430.pktlen.png)
detailed numbers
[ 32- 63]: 2355449
[ 64- 127]: 3296435
[ 128- 255]: 754518
[ 256- 511]: 442908
[ 512- 1023]: 295473
[ 1024- 2047]: 4423273
Protocol Breakdown
![[protocol breakdown chart]](200803200430.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 11568056 (100.00%) 7351583095 (100.00%) 635.51
ip 11538876 ( 99.75%) 7342179209 ( 99.87%) 636.30
tcp 8838472 ( 76.40%) 6651112224 ( 90.47%) 752.52
http(s) 2815876 ( 24.34%) 3848826633 ( 52.35%) 1366.83
http(c) 1379822 ( 11.93%) 116606513 ( 1.59%) 84.51
squid 862792 ( 7.46%) 702892128 ( 9.56%) 814.67
smtp 763161 ( 6.60%) 106753389 ( 1.45%) 139.88
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 11010 ( 0.10%) 1224273 ( 0.02%) 111.20
pop3 5331 ( 0.05%) 1894163 ( 0.03%) 355.31
imap 1075 ( 0.01%) 293681 ( 0.00%) 273.19
telnet 3767 ( 0.03%) 241789 ( 0.00%) 64.19
ssh 1190955 ( 10.30%) 977930233 ( 13.30%) 821.13
dns 4001 ( 0.03%) 1897940 ( 0.03%) 474.37
bgp 209 ( 0.00%) 67719 ( 0.00%) 324.01
napster 439 ( 0.00%) 199476 ( 0.00%) 454.39
realaud 24 ( 0.00%) 3516 ( 0.00%) 146.50
rtsp 52978 ( 0.46%) 49156589 ( 0.67%) 927.87
icecast 6375 ( 0.06%) 3091145 ( 0.04%) 484.89
hotline 2 ( 0.00%) 122 ( 0.00%) 61.00
other 1740646 ( 15.05%) 840032375 ( 11.43%) 482.60
udp 2220393 ( 19.19%) 648045084 ( 8.82%) 291.86
dns 1079257 ( 9.33%) 162260370 ( 2.21%) 150.34
realaud 8729 ( 0.08%) 5457697 ( 0.07%) 625.24
halflif 26 ( 0.00%) 3019 ( 0.00%) 116.12
starcra 12 ( 0.00%) 2490 ( 0.00%) 207.50
everque 64 ( 0.00%) 11277 ( 0.00%) 176.20
unreal 20 ( 0.00%) 3427 ( 0.00%) 171.35
quake 10 ( 0.00%) 1512 ( 0.00%) 151.20
cuseeme 2 ( 0.00%) 383 ( 0.00%) 191.50
other 1132230 ( 9.79%) 480271569 ( 6.53%) 424.18
icmp 473256 ( 4.09%) 42080545 ( 0.57%) 88.92
ipip 326 ( 0.00%) 39184 ( 0.00%) 120.20
ip6 1135 ( 0.01%) 160622 ( 0.00%) 141.52
other 5294 ( 0.05%) 741550 ( 0.01%) 140.07
frag 1724 ( 0.01%) 1695861 ( 0.02%) 983.68
ip6 29180 ( 0.25%) 9403886 ( 0.13%) 322.27
tcp6 3680 ( 0.03%) 714700 ( 0.01%) 194.21
http(s) 103 ( 0.00%) 121553 ( 0.00%) 1180.13
http(c) 793 ( 0.01%) 82425 ( 0.00%) 103.94
smtp 582 ( 0.01%) 213979 ( 0.00%) 367.66
ftp 70 ( 0.00%) 7892 ( 0.00%) 112.74
pop3 34 ( 0.00%) 3172 ( 0.00%) 93.29
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 72 ( 0.00%) 8102 ( 0.00%) 112.53
other 2019 ( 0.02%) 276942 ( 0.00%) 137.17
udp6 16882 ( 0.15%) 3537522 ( 0.05%) 209.54
dns 15440 ( 0.13%) 3205046 ( 0.04%) 207.58
starcra 1 ( 0.00%) 137 ( 0.00%) 137.00
other 1441 ( 0.01%) 332339 ( 0.00%) 230.63
icmp6 5170 ( 0.04%) 700104 ( 0.01%) 135.42
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 3418 ( 0.03%) 4447480 ( 0.06%) 1301.19
tcpdump file: 200803200430.dump.gz (291.77 MB)