Traffic Trace Info
DumpFile: -
Id: 200803200900
StartTime: Thu Mar 20 09:00:00 2008
EndTime: Thu Mar 20 09:15:01 2008
TotalTime: 900.13 seconds
TotalCapSize: 509.47MB CapLen: 96 bytes
# of packets: 9024503 (5458.32MB)
AvgRate: 50.87Mbps stddev:8.51M
IP flow (unique src/dst pair) Information
# of flows: 547644 (avg. 16.48 pkts/flow)
Top 10 big flow size (bytes/total in %):
16.4% 6.7% 2.3% 2.3% 1.4% 1.0% 0.9% 0.8% 0.8% 0.6%
IP address Information
# of IPv4 addresses: 287697
Top 10 bandwidth usage (bytes/total in %):
24.0% 16.7% 7.8% 7.7% 7.7% 6.9% 4.1% 3.2% 3.2% 2.9%
# of IPv6 addresses: 1549
Top 10 bandwidth usage (bytes/total in %):
48.7% 43.1% 5.4% 4.1% 3.3% 3.1% 3.1% 3.0% 3.0% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803200900.pktlen.png)
detailed numbers
[ 32- 63]: 1560143
[ 64- 127]: 2903104
[ 128- 255]: 667687
[ 256- 511]: 324129
[ 512- 1023]: 159731
[ 1024- 2047]: 3409709
Protocol Breakdown
![[protocol breakdown chart]](200803200900.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 9024503 (100.00%) 5723462411 (100.00%) 634.21
ip 9000955 ( 99.74%) 5717198607 ( 99.89%) 635.18
tcp 7297171 ( 80.86%) 5445841746 ( 95.15%) 746.29
http(s) 2615424 ( 28.98%) 3596270273 ( 62.83%) 1375.02
http(c) 1451427 ( 16.08%) 148846013 ( 2.60%) 102.55
squid 584208 ( 6.47%) 435124405 ( 7.60%) 744.81
smtp 662442 ( 7.34%) 102106533 ( 1.78%) 154.14
ftp 17739 ( 0.20%) 1975824 ( 0.03%) 111.38
pop3 3415 ( 0.04%) 1669996 ( 0.03%) 489.02
imap 1835 ( 0.02%) 560353 ( 0.01%) 305.37
telnet 1274 ( 0.01%) 82100 ( 0.00%) 64.44
ssh 410504 ( 4.55%) 394801577 ( 6.90%) 961.75
dns 2047 ( 0.02%) 154243 ( 0.00%) 75.35
bgp 213 ( 0.00%) 72994 ( 0.00%) 342.69
napster 40 ( 0.00%) 5966 ( 0.00%) 149.15
realaud 1 ( 0.00%) 106 ( 0.00%) 106.00
rtsp 3143 ( 0.03%) 2742548 ( 0.05%) 872.59
icecast 6413 ( 0.07%) 3098638 ( 0.05%) 483.18
hotline 9 ( 0.00%) 540 ( 0.00%) 60.00
other 1536961 ( 17.03%) 758325077 ( 13.25%) 493.39
udp 1335711 ( 14.80%) 236908548 ( 4.14%) 177.37
dns 948682 ( 10.51%) 138967871 ( 2.43%) 146.49
realaud 8707 ( 0.10%) 5455904 ( 0.10%) 626.61
halflif 20 ( 0.00%) 2630 ( 0.00%) 131.50
starcra 27 ( 0.00%) 3944 ( 0.00%) 146.07
everque 19 ( 0.00%) 2729 ( 0.00%) 143.63
unreal 17 ( 0.00%) 2287 ( 0.00%) 134.53
quake 5 ( 0.00%) 759 ( 0.00%) 151.80
cuseeme 6 ( 0.00%) 1276 ( 0.00%) 212.67
other 378174 ( 4.19%) 92444481 ( 1.62%) 244.45
icmp 361410 ( 4.00%) 33510711 ( 0.59%) 92.72
ipip 369 ( 0.00%) 44337 ( 0.00%) 120.15
ip6 1068 ( 0.01%) 148406 ( 0.00%) 138.96
other 5226 ( 0.06%) 744859 ( 0.01%) 142.53
frag 1708 ( 0.02%) 1419116 ( 0.02%) 830.86
ip6 23548 ( 0.26%) 6263804 ( 0.11%) 266.00
tcp6 3534 ( 0.04%) 474244 ( 0.01%) 134.19
http(s) 5 ( 0.00%) 612 ( 0.00%) 122.40
http(c) 795 ( 0.01%) 79970 ( 0.00%) 100.59
smtp 401 ( 0.00%) 129033 ( 0.00%) 321.78
pop3 58 ( 0.00%) 5220 ( 0.00%) 90.00
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 107 ( 0.00%) 12455 ( 0.00%) 116.40
other 2160 ( 0.02%) 246245 ( 0.00%) 114.00
udp6 12634 ( 0.14%) 2351422 ( 0.04%) 186.12
dns 11354 ( 0.13%) 2021794 ( 0.04%) 178.07
everque 2 ( 0.00%) 718 ( 0.00%) 359.00
other 1278 ( 0.01%) 328910 ( 0.01%) 257.36
icmp6 5330 ( 0.06%) 735450 ( 0.01%) 137.98
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 2020 ( 0.02%) 2698608 ( 0.05%) 1335.94
tcpdump file: 200803200900.dump.gz (228.32 MB)