Traffic Trace Info
DumpFile: -
Id: 200803201200
StartTime: Thu Mar 20 12:00:01 2008
EndTime: Thu Mar 20 12:15:00 2008
TotalTime: 899.81 seconds
TotalCapSize: 646.04MB CapLen: 96 bytes
# of packets: 11728866 (6852.58MB)
AvgRate: 63.90Mbps stddev:20.01M
IP flow (unique src/dst pair) Information
# of flows: 773905 (avg. 15.16 pkts/flow)
Top 10 big flow size (bytes/total in %):
7.2% 3.4% 2.4% 1.8% 1.8% 1.4% 1.3% 1.3% 1.2% 1.2%
IP address Information
# of IPv4 addresses: 493325
Top 10 bandwidth usage (bytes/total in %):
14.1% 7.4% 6.4% 5.2% 5.1% 4.0% 3.5% 2.6% 2.6% 2.4%
# of IPv6 addresses: 1384
Top 10 bandwidth usage (bytes/total in %):
55.4% 51.8% 10.4% 8.3% 3.5% 2.9% 2.4% 2.4% 2.2% 2.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803201200.pktlen.png)
detailed numbers
[ 32- 63]: 3038167
[ 64- 127]: 2962422
[ 128- 255]: 698937
[ 256- 511]: 552290
[ 512- 1023]: 189185
[ 1024- 2047]: 4287865
Protocol Breakdown
![[protocol breakdown chart]](200803201200.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 11728866 (100.00%) 7185448754 (100.00%) 612.63
ip 11703106 ( 99.78%) 7177079416 ( 99.88%) 613.26
tcp 9772847 ( 83.32%) 6790302692 ( 94.50%) 694.81
http(s) 3132104 ( 26.70%) 4188071081 ( 58.29%) 1337.14
http(c) 2015201 ( 17.18%) 221083895 ( 3.08%) 109.71
squid 525262 ( 4.48%) 270763507 ( 3.77%) 515.48
smtp 573861 ( 4.89%) 98368228 ( 1.37%) 171.41
nntp 30 ( 0.00%) 3320 ( 0.00%) 110.67
ftp 52026 ( 0.44%) 19058030 ( 0.27%) 366.32
pop3 25534 ( 0.22%) 21802080 ( 0.30%) 853.85
imap 3506 ( 0.03%) 645467 ( 0.01%) 184.10
telnet 858 ( 0.01%) 54561 ( 0.00%) 63.59
ssh 260962 ( 2.22%) 252618923 ( 3.52%) 968.03
dns 1961 ( 0.02%) 163240 ( 0.00%) 83.24
bgp 187 ( 0.00%) 52124 ( 0.00%) 278.74
napster 3324 ( 0.03%) 1622265 ( 0.02%) 488.05
realaud 37 ( 0.00%) 4763 ( 0.00%) 128.73
rtsp 31852 ( 0.27%) 28249966 ( 0.39%) 886.91
icecast 9117 ( 0.08%) 4057804 ( 0.06%) 445.08
hotline 10 ( 0.00%) 1620 ( 0.00%) 162.00
other 3136938 ( 26.75%) 1683677198 ( 23.43%) 536.73
udp 1585104 ( 13.51%) 353774108 ( 4.92%) 223.19
dns 857115 ( 7.31%) 126424824 ( 1.76%) 147.50
realaud 10417 ( 0.09%) 6590646 ( 0.09%) 632.68
halflif 23 ( 0.00%) 4433 ( 0.00%) 192.74
starcra 18 ( 0.00%) 2685 ( 0.00%) 149.17
everque 35 ( 0.00%) 5906 ( 0.00%) 168.74
unreal 11 ( 0.00%) 1801 ( 0.00%) 163.73
quake 10 ( 0.00%) 880 ( 0.00%) 88.00
cuseeme 5 ( 0.00%) 468 ( 0.00%) 93.60
other 717427 ( 6.12%) 220728409 ( 3.07%) 307.67
icmp 333298 ( 2.84%) 31243779 ( 0.43%) 93.74
ipip 334 ( 0.00%) 39998 ( 0.00%) 119.75
ip6 1122 ( 0.01%) 159606 ( 0.00%) 142.25
other 10401 ( 0.09%) 1559233 ( 0.02%) 149.91
frag 1882 ( 0.02%) 1574900 ( 0.02%) 836.82
ip6 25760 ( 0.22%) 8369338 ( 0.12%) 324.90
tcp6 3154 ( 0.03%) 615545 ( 0.01%) 195.16
http(s) 171 ( 0.00%) 163478 ( 0.00%) 956.01
http(c) 825 ( 0.01%) 81657 ( 0.00%) 98.98
smtp 402 ( 0.00%) 160277 ( 0.00%) 398.70
pop3 46 ( 0.00%) 4194 ( 0.00%) 91.17
bgp 107 ( 0.00%) 14116 ( 0.00%) 131.93
other 1603 ( 0.01%) 191823 ( 0.00%) 119.67
udp6 14120 ( 0.12%) 2680704 ( 0.04%) 189.85
dns 12979 ( 0.11%) 2438797 ( 0.03%) 187.90
everque 1 ( 0.00%) 137 ( 0.00%) 137.00
other 1140 ( 0.01%) 241770 ( 0.00%) 212.08
icmp6 5154 ( 0.04%) 750997 ( 0.01%) 145.71
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 3302 ( 0.03%) 4318012 ( 0.06%) 1307.70
tcpdump file: 200803201200.dump.gz (293.07 MB)