Traffic Trace Info
DumpFile: -
Id: 200803200700
StartTime: Thu Mar 20 07:00:00 2008
EndTime: Thu Mar 20 07:15:00 2008
TotalTime: 900.08 seconds
TotalCapSize: 507.56MB CapLen: 96 bytes
# of packets: 9123068 (5559.77MB)
AvgRate: 51.83Mbps stddev:17.05M
IP flow (unique src/dst pair) Information
# of flows: 609502 (avg. 14.97 pkts/flow)
Top 10 big flow size (bytes/total in %):
8.7% 6.8% 3.7% 1.9% 1.8% 1.6% 1.6% 0.9% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 348799
Top 10 bandwidth usage (bytes/total in %):
13.6% 10.8% 10.2% 8.7% 8.4% 7.9% 7.0% 3.7% 3.7% 2.9%
# of IPv6 addresses: 1351
Top 10 bandwidth usage (bytes/total in %):
55.2% 51.3% 8.4% 6.8% 3.1% 3.0% 2.9% 2.8% 2.5% 2.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803200700.pktlen.png)
detailed numbers
[ 32- 63]: 1907857
[ 64- 127]: 2478969
[ 128- 255]: 645315
[ 256- 511]: 348539
[ 512- 1023]: 287955
[ 1024- 2047]: 3454433
Protocol Breakdown
![[protocol breakdown chart]](200803200700.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 9123068 (100.00%) 5829840705 (100.00%) 639.02
ip 9094440 ( 99.69%) 5820903713 ( 99.85%) 640.05
tcp 7378357 ( 80.88%) 5540637304 ( 95.04%) 750.93
http(s) 2427898 ( 26.61%) 3204544812 ( 54.97%) 1319.88
http(c) 1253668 ( 13.74%) 102210690 ( 1.75%) 81.53
squid 523928 ( 5.74%) 329506970 ( 5.65%) 628.92
smtp 617349 ( 6.77%) 94209372 ( 1.62%) 152.60
ftp 17267 ( 0.19%) 1827038 ( 0.03%) 105.81
pop3 2801 ( 0.03%) 1479315 ( 0.03%) 528.14
imap 1335 ( 0.01%) 322495 ( 0.01%) 241.57
telnet 878 ( 0.01%) 56342 ( 0.00%) 64.17
ssh 436003 ( 4.78%) 409550136 ( 7.03%) 939.33
dns 1974 ( 0.02%) 168789 ( 0.00%) 85.51
bgp 193 ( 0.00%) 59270 ( 0.00%) 307.10
napster 121 ( 0.00%) 8882 ( 0.00%) 73.40
realaud 35 ( 0.00%) 4189 ( 0.00%) 119.69
rtsp 193 ( 0.00%) 48846 ( 0.00%) 253.09
icecast 6374 ( 0.07%) 3090855 ( 0.05%) 484.92
other 2088335 ( 22.89%) 1393549003 ( 23.90%) 667.30
udp 1349365 ( 14.79%) 245760771 ( 4.22%) 182.13
dns 944309 ( 10.35%) 141797876 ( 2.43%) 150.16
realaud 8704 ( 0.10%) 5455282 ( 0.09%) 626.76
halflif 27 ( 0.00%) 3322 ( 0.00%) 123.04
starcra 23 ( 0.00%) 4600 ( 0.00%) 200.00
everque 33 ( 0.00%) 4082 ( 0.00%) 123.70
unreal 7 ( 0.00%) 783 ( 0.00%) 111.86
quake 4 ( 0.00%) 376 ( 0.00%) 94.00
cuseeme 3 ( 0.00%) 1002 ( 0.00%) 334.00
other 396174 ( 4.34%) 98439397 ( 1.69%) 248.48
icmp 359901 ( 3.94%) 33558872 ( 0.58%) 93.24
ipip 358 ( 0.00%) 43445 ( 0.00%) 121.35
ip6 1049 ( 0.01%) 145922 ( 0.00%) 139.11
other 5410 ( 0.06%) 757399 ( 0.01%) 140.00
frag 1546 ( 0.02%) 1348229 ( 0.02%) 872.08
ip6 28628 ( 0.31%) 8936992 ( 0.15%) 312.18
tcp6 4336 ( 0.05%) 692720 ( 0.01%) 159.76
http(s) 4 ( 0.00%) 526 ( 0.00%) 131.50
http(c) 913 ( 0.01%) 96003 ( 0.00%) 105.15
smtp 846 ( 0.01%) 309960 ( 0.01%) 366.38
pop3 36 ( 0.00%) 3300 ( 0.00%) 91.67
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
bgp 109 ( 0.00%) 12815 ( 0.00%) 117.57
other 2427 ( 0.03%) 270042 ( 0.00%) 111.27
udp6 15705 ( 0.17%) 2964588 ( 0.05%) 188.77
dns 14613 ( 0.16%) 2724291 ( 0.05%) 186.43
everque 1 ( 0.00%) 137 ( 0.00%) 137.00
other 1091 ( 0.01%) 240160 ( 0.00%) 220.13
icmp6 5066 ( 0.06%) 712548 ( 0.01%) 140.65
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 3490 ( 0.04%) 4562920 ( 0.08%) 1307.43
tcpdump file: 200803200700.dump.gz (232.73 MB)