Traffic Trace Info
DumpFile: -
Id: 200803201100
StartTime: Thu Mar 20 11:00:00 2008
EndTime: Thu Mar 20 11:15:01 2008
TotalTime: 900.40 seconds
TotalCapSize: 615.24MB CapLen: 96 bytes
# of packets: 10970780 (5917.75MB)
AvgRate: 55.14Mbps stddev:11.53M
IP flow (unique src/dst pair) Information
# of flows: 510989 (avg. 21.47 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.3% 2.6% 2.3% 2.2% 1.8% 1.7% 1.7% 1.4% 1.3% 1.0%
IP address Information
# of IPv4 addresses: 264108
Top 10 bandwidth usage (bytes/total in %):
7.6% 7.3% 6.5% 6.5% 6.4% 6.3% 4.5% 3.0% 2.6% 2.6%
# of IPv6 addresses: 1434
Top 10 bandwidth usage (bytes/total in %):
40.6% 35.0% 10.0% 8.4% 7.2% 3.8% 3.8% 3.1% 3.1% 3.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803201100.pktlen.png)
detailed numbers
[ 32- 63]: 2389997
[ 64- 127]: 3665601
[ 128- 255]: 707310
[ 256- 511]: 359454
[ 512- 1023]: 206798
[ 1024- 2047]: 3641620
Protocol Breakdown
![[protocol breakdown chart]](200803201100.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 10970780 (100.00%) 6205207751 (100.00%) 565.61
ip 10946252 ( 99.78%) 6199626949 ( 99.91%) 566.37
tcp 9217747 ( 84.02%) 5928974634 ( 95.55%) 643.21
http(s) 2882741 ( 26.28%) 3813002706 ( 61.45%) 1322.70
http(c) 1567328 ( 14.29%) 135646656 ( 2.19%) 86.55
squid 527462 ( 4.81%) 317697396 ( 5.12%) 602.31
smtp 621256 ( 5.66%) 108411436 ( 1.75%) 174.50
ftp 21975 ( 0.20%) 2456939 ( 0.04%) 111.81
pop3 11226 ( 0.10%) 8385470 ( 0.14%) 746.97
imap 6324 ( 0.06%) 2303480 ( 0.04%) 364.24
telnet 381 ( 0.00%) 24597 ( 0.00%) 64.56
ssh 453167 ( 4.13%) 415983364 ( 6.70%) 917.95
dns 1940 ( 0.02%) 145720 ( 0.00%) 75.11
bgp 194 ( 0.00%) 54933 ( 0.00%) 283.16
napster 143 ( 0.00%) 35802 ( 0.00%) 250.36
realaud 8 ( 0.00%) 1108 ( 0.00%) 138.50
rtsp 3730 ( 0.03%) 5064335 ( 0.08%) 1357.73
icecast 6766 ( 0.06%) 3283595 ( 0.05%) 485.31
hotline 6 ( 0.00%) 360 ( 0.00%) 60.00
other 3113100 ( 28.38%) 1116476737 ( 17.99%) 358.64
udp 1385757 ( 12.63%) 238234098 ( 3.84%) 171.92
dns 937485 ( 8.55%) 136218172 ( 2.20%) 145.30
realaud 8708 ( 0.08%) 5455558 ( 0.09%) 626.50
halflif 23 ( 0.00%) 3580 ( 0.00%) 155.65
starcra 20 ( 0.00%) 3736 ( 0.00%) 186.80
everque 21 ( 0.00%) 3743 ( 0.00%) 178.24
unreal 8 ( 0.00%) 1265 ( 0.00%) 158.12
quake 9 ( 0.00%) 1269 ( 0.00%) 141.00
cuseeme 3 ( 0.00%) 268 ( 0.00%) 89.33
other 439365 ( 4.00%) 96474099 ( 1.55%) 219.58
icmp 335966 ( 3.06%) 31470764 ( 0.51%) 93.67
ipip 370 ( 0.00%) 45842 ( 0.00%) 123.90
ip6 1029 ( 0.01%) 142284 ( 0.00%) 138.27
other 5383 ( 0.05%) 759327 ( 0.01%) 141.06
frag 1743 ( 0.02%) 1593383 ( 0.03%) 914.16
ip6 24528 ( 0.22%) 5580802 ( 0.09%) 227.53
tcp6 2866 ( 0.03%) 370335 ( 0.01%) 129.22
http(s) 5 ( 0.00%) 612 ( 0.00%) 122.40
http(c) 768 ( 0.01%) 80952 ( 0.00%) 105.41
smtp 321 ( 0.00%) 76233 ( 0.00%) 237.49
ftp 20 ( 0.00%) 1838 ( 0.00%) 91.90
pop3 45 ( 0.00%) 4102 ( 0.00%) 91.16
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
bgp 100 ( 0.00%) 11539 ( 0.00%) 115.39
other 1606 ( 0.01%) 194985 ( 0.00%) 121.41
udp6 15193 ( 0.14%) 2587056 ( 0.04%) 170.28
dns 14215 ( 0.13%) 2375803 ( 0.04%) 167.13
other 978 ( 0.01%) 211253 ( 0.00%) 216.01
icmp6 4960 ( 0.05%) 675657 ( 0.01%) 136.22
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1479 ( 0.01%) 1943674 ( 0.03%) 1314.18
tcpdump file: 200803201100.dump.gz (274.99 MB)