Traffic Trace Info
DumpFile: -
Id: 200803200830
StartTime: Thu Mar 20 08:30:00 2008
EndTime: Thu Mar 20 08:45:00 2008
TotalTime: 900.11 seconds
TotalCapSize: 558.10MB CapLen: 96 bytes
# of packets: 9848403 (6358.45MB)
AvgRate: 59.26Mbps stddev:9.30M
IP flow (unique src/dst pair) Information
# of flows: 499852 (avg. 19.70 pkts/flow)
Top 10 big flow size (bytes/total in %):
15.7% 6.0% 3.2% 1.7% 1.4% 1.2% 1.2% 1.1% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 258668
Top 10 bandwidth usage (bytes/total in %):
23.5% 16.1% 7.4% 7.3% 6.9% 6.8% 6.1% 3.6% 3.5% 3.3%
# of IPv6 addresses: 1374
Top 10 bandwidth usage (bytes/total in %):
43.9% 38.7% 9.4% 9.1% 4.1% 3.9% 2.9% 2.9% 2.7% 2.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803200830.pktlen.png)
detailed numbers
[ 32- 63]: 1632992
[ 64- 127]: 3048481
[ 128- 255]: 643111
[ 256- 511]: 333014
[ 512- 1023]: 142704
[ 1024- 2047]: 4048101
Protocol Breakdown
![[protocol breakdown chart]](200803200830.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 9848403 (100.00%) 6667318152 (100.00%) 676.99
ip 9824333 ( 99.76%) 6660382819 ( 99.90%) 677.95
tcp 8179087 ( 83.05%) 6386986799 ( 95.80%) 780.89
http(s) 2869171 ( 29.13%) 4004076681 ( 60.06%) 1395.55
http(c) 1327118 ( 13.48%) 115016707 ( 1.73%) 86.67
squid 773253 ( 7.85%) 614110890 ( 9.21%) 794.19
smtp 616712 ( 6.26%) 88366945 ( 1.33%) 143.29
ftp 36111 ( 0.37%) 3421280 ( 0.05%) 94.74
pop3 4182 ( 0.04%) 1782923 ( 0.03%) 426.33
imap 2226 ( 0.02%) 1215401 ( 0.02%) 546.00
telnet 1017 ( 0.01%) 65404 ( 0.00%) 64.31
ssh 426006 ( 4.33%) 410645556 ( 6.16%) 963.94
dns 3802 ( 0.04%) 1867189 ( 0.03%) 491.11
bgp 228 ( 0.00%) 71956 ( 0.00%) 315.60
napster 294 ( 0.00%) 237558 ( 0.00%) 808.02
realaud 31 ( 0.00%) 4384 ( 0.00%) 141.42
rtsp 22709 ( 0.23%) 1564161 ( 0.02%) 68.88
icecast 6486 ( 0.07%) 3115507 ( 0.05%) 480.34
other 2089620 ( 21.22%) 1141416997 ( 17.12%) 546.23
udp 1287461 ( 13.07%) 239795932 ( 3.60%) 186.25
dns 883342 ( 8.97%) 132510287 ( 1.99%) 150.01
realaud 8706 ( 0.09%) 5456064 ( 0.08%) 626.70
halflif 23 ( 0.00%) 2814 ( 0.00%) 122.35
starcra 14 ( 0.00%) 2359 ( 0.00%) 168.50
everque 24 ( 0.00%) 4733 ( 0.00%) 197.21
unreal 16 ( 0.00%) 3566 ( 0.00%) 222.88
quake 6 ( 0.00%) 464 ( 0.00%) 77.33
cuseeme 1 ( 0.00%) 314 ( 0.00%) 314.00
other 395270 ( 4.01%) 101783636 ( 1.53%) 257.50
icmp 351023 ( 3.56%) 32655428 ( 0.49%) 93.03
ipip 379 ( 0.00%) 45255 ( 0.00%) 119.41
ip6 1037 ( 0.01%) 143083 ( 0.00%) 137.98
other 5346 ( 0.05%) 756322 ( 0.01%) 141.47
frag 1440 ( 0.01%) 1216746 ( 0.02%) 844.96
ip6 24070 ( 0.24%) 6935333 ( 0.10%) 288.13
tcp6 4533 ( 0.05%) 1262586 ( 0.02%) 278.53
http(s) 53 ( 0.00%) 60540 ( 0.00%) 1142.26
http(c) 869 ( 0.01%) 90187 ( 0.00%) 103.78
smtp 726 ( 0.01%) 209402 ( 0.00%) 288.43
ftp 83 ( 0.00%) 6889 ( 0.00%) 83.00
pop3 45 ( 0.00%) 4102 ( 0.00%) 91.16
bgp 108 ( 0.00%) 12687 ( 0.00%) 117.47
other 2649 ( 0.03%) 878779 ( 0.01%) 331.74
udp6 12454 ( 0.13%) 2311844 ( 0.03%) 185.63
dns 11286 ( 0.11%) 2033111 ( 0.03%) 180.14
everque 1 ( 0.00%) 137 ( 0.00%) 137.00
other 1167 ( 0.01%) 278596 ( 0.00%) 238.73
icmp6 5106 ( 0.05%) 743564 ( 0.01%) 145.63
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1947 ( 0.02%) 2613259 ( 0.04%) 1342.20
tcpdump file: 200803200830.dump.gz (243.24 MB)