Traffic Trace Info
DumpFile: -
Id: 200803201030
StartTime: Thu Mar 20 10:30:00 2008
EndTime: Thu Mar 20 10:45:00 2008
TotalTime: 900.34 seconds
TotalCapSize: 587.95MB CapLen: 96 bytes
# of packets: 10684940 (5864.58MB)
AvgRate: 54.64Mbps stddev:9.31M
IP flow (unique src/dst pair) Information
# of flows: 575116 (avg. 18.58 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.2% 6.0% 2.0% 1.8% 1.8% 1.8% 0.9% 0.9% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 308265
Top 10 bandwidth usage (bytes/total in %):
8.2% 7.1% 7.0% 6.8% 6.7% 6.4% 6.2% 6.0% 5.0% 4.6%
# of IPv6 addresses: 1591
Top 10 bandwidth usage (bytes/total in %):
36.8% 31.4% 10.3% 9.0% 6.8% 4.7% 4.3% 4.3% 4.0% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803201030.pktlen.png)
detailed numbers
[ 32- 63]: 2641135
[ 64- 127]: 3130130
[ 128- 255]: 772510
[ 256- 511]: 316793
[ 512- 1023]: 188962
[ 1024- 2047]: 3635410
Protocol Breakdown
![[protocol breakdown chart]](200803201030.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 10684940 (100.00%) 6149460442 (100.00%) 575.53
ip 10660484 ( 99.77%) 6143456169 ( 99.90%) 576.28
tcp 8170914 ( 76.47%) 5750554518 ( 93.51%) 703.78
http(s) 2788095 ( 26.09%) 3772404257 ( 61.35%) 1353.04
http(c) 1710957 ( 16.01%) 194567022 ( 3.16%) 113.72
squid 495993 ( 4.64%) 321028622 ( 5.22%) 647.24
smtp 805940 ( 7.54%) 125654496 ( 2.04%) 155.91
nntp 6 ( 0.00%) 372 ( 0.00%) 62.00
ftp 63707 ( 0.60%) 5418370 ( 0.09%) 85.05
pop3 7479 ( 0.07%) 2862327 ( 0.05%) 382.72
imap 5727 ( 0.05%) 2835544 ( 0.05%) 495.12
telnet 358 ( 0.00%) 23144 ( 0.00%) 64.65
ssh 404531 ( 3.79%) 392191720 ( 6.38%) 969.50
dns 3489 ( 0.03%) 1860684 ( 0.03%) 533.30
bgp 182 ( 0.00%) 53060 ( 0.00%) 291.54
napster 245 ( 0.00%) 14869 ( 0.00%) 60.69
realaud 27 ( 0.00%) 3658 ( 0.00%) 135.48
rtsp 3482 ( 0.03%) 4522478 ( 0.07%) 1298.82
icecast 6487 ( 0.06%) 3085619 ( 0.05%) 475.66
hotline 1 ( 0.00%) 60 ( 0.00%) 60.00
other 1874206 ( 17.54%) 924028096 ( 15.03%) 493.02
udp 1955528 ( 18.30%) 342002662 ( 5.56%) 174.89
dns 922665 ( 8.64%) 134426029 ( 2.19%) 145.69
realaud 8715 ( 0.08%) 5457943 ( 0.09%) 626.27
halflif 16 ( 0.00%) 2403 ( 0.00%) 150.19
starcra 20 ( 0.00%) 3760 ( 0.00%) 188.00
everque 30 ( 0.00%) 4784 ( 0.00%) 159.47
unreal 77 ( 0.00%) 6068 ( 0.00%) 78.81
quake 1 ( 0.00%) 75 ( 0.00%) 75.00
cuseeme 2 ( 0.00%) 419 ( 0.00%) 209.50
other 1023944 ( 9.58%) 202076273 ( 3.29%) 197.35
icmp 527115 ( 4.93%) 49928847 ( 0.81%) 94.72
ipip 362 ( 0.00%) 44484 ( 0.00%) 122.88
ip6 1135 ( 0.01%) 159443 ( 0.00%) 140.48
other 5430 ( 0.05%) 766215 ( 0.01%) 141.11
frag 1290 ( 0.01%) 1086648 ( 0.02%) 842.36
ip6 24456 ( 0.23%) 6004273 ( 0.10%) 245.51
tcp6 3239 ( 0.03%) 479938 ( 0.01%) 148.17
http(s) 53 ( 0.00%) 60540 ( 0.00%) 1142.26
http(c) 814 ( 0.01%) 81382 ( 0.00%) 99.98
smtp 371 ( 0.00%) 105079 ( 0.00%) 283.23
pop3 34 ( 0.00%) 3134 ( 0.00%) 92.18
bgp 104 ( 0.00%) 11949 ( 0.00%) 114.89
other 1863 ( 0.02%) 217854 ( 0.00%) 116.94
udp6 14298 ( 0.13%) 2842755 ( 0.05%) 198.82
dns 13011 ( 0.12%) 2461433 ( 0.04%) 189.18
everque 1 ( 0.00%) 576 ( 0.00%) 576.00
other 1286 ( 0.01%) 380746 ( 0.01%) 296.07
icmp6 5452 ( 0.05%) 796035 ( 0.01%) 146.01
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1437 ( 0.01%) 1881465 ( 0.03%) 1309.30
tcpdump file: 200803201030.dump.gz (266.95 MB)