Traffic Trace Info
DumpFile: -
Id: 200803201545
StartTime: Thu Mar 20 15:45:00 2008
EndTime: Thu Mar 20 16:00:00 2008
TotalTime: 900.01 seconds
TotalCapSize: 774.41MB CapLen: 96 bytes
# of packets: 14236123 (8193.93MB)
AvgRate: 76.38Mbps stddev:13.86M
IP flow (unique src/dst pair) Information
# of flows: 717307 (avg. 19.85 pkts/flow)
Top 10 big flow size (bytes/total in %):
7.7% 3.8% 3.3% 3.2% 2.5% 1.5% 1.2% 1.2% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 372688
Top 10 bandwidth usage (bytes/total in %):
16.7% 8.0% 7.5% 5.1% 4.7% 4.6% 4.3% 3.9% 3.4% 3.4%
# of IPv6 addresses: 1335
Top 10 bandwidth usage (bytes/total in %):
53.8% 50.3% 9.5% 7.7% 3.2% 3.2% 2.5% 2.5% 2.2% 2.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803201545.pktlen.png)
detailed numbers
[ 32- 63]: 3033768
[ 64- 127]: 4100430
[ 128- 255]: 898861
[ 256- 511]: 703629
[ 512- 1023]: 444261
[ 1024- 2047]: 5055174
Protocol Breakdown
![[protocol breakdown chart]](200803201545.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 14236123 (100.00%) 8591959239 (100.00%) 603.53
ip 14209529 ( 99.81%) 8582888564 ( 99.89%) 604.02
tcp 11076977 ( 77.81%) 7736708922 ( 90.05%) 698.45
http(s) 3490469 ( 24.52%) 4724426122 ( 54.99%) 1353.52
http(c) 2274773 ( 15.98%) 197503512 ( 2.30%) 86.82
squid 648652 ( 4.56%) 347271993 ( 4.04%) 535.37
smtp 605706 ( 4.25%) 92403689 ( 1.08%) 152.56
ftp 486239 ( 3.42%) 442091756 ( 5.15%) 909.21
pop3 4374 ( 0.03%) 1431930 ( 0.02%) 327.37
imap 9291 ( 0.07%) 4974086 ( 0.06%) 535.37
telnet 540 ( 0.00%) 35185 ( 0.00%) 65.16
ssh 979091 ( 6.88%) 500197861 ( 5.82%) 510.88
dns 2064 ( 0.01%) 154074 ( 0.00%) 74.65
bgp 212 ( 0.00%) 70052 ( 0.00%) 330.43
napster 2448 ( 0.02%) 719143 ( 0.01%) 293.77
realaud 14 ( 0.00%) 2493 ( 0.00%) 178.07
rtsp 569 ( 0.00%) 132598 ( 0.00%) 233.04
icecast 12066 ( 0.08%) 8107746 ( 0.09%) 671.95
hotline 8 ( 0.00%) 1518 ( 0.00%) 189.75
other 2560162 ( 17.98%) 1417167224 ( 16.49%) 553.55
udp 2724483 ( 19.14%) 801765231 ( 9.33%) 294.28
dns 951182 ( 6.68%) 138281938 ( 1.61%) 145.38
realaud 33552 ( 0.24%) 23020169 ( 0.27%) 686.10
halflif 9 ( 0.00%) 1290 ( 0.00%) 143.33
starcra 10296 ( 0.07%) 5861574 ( 0.07%) 569.31
everque 54 ( 0.00%) 6855 ( 0.00%) 126.94
unreal 13 ( 0.00%) 1933 ( 0.00%) 148.69
quake 9 ( 0.00%) 1101 ( 0.00%) 122.33
cuseeme 2 ( 0.00%) 454 ( 0.00%) 227.00
other 1729334 ( 12.15%) 634580905 ( 7.39%) 366.95
icmp 354506 ( 2.49%) 33735105 ( 0.39%) 95.16
ipip 293 ( 0.00%) 34898 ( 0.00%) 119.11
ip6 999 ( 0.01%) 135325 ( 0.00%) 135.46
other 52271 ( 0.37%) 10509083 ( 0.12%) 201.05
frag 3037 ( 0.02%) 2375242 ( 0.03%) 782.10
ip6 26594 ( 0.19%) 9070675 ( 0.11%) 341.08
tcp6 3928 ( 0.03%) 998190 ( 0.01%) 254.12
http(s) 111 ( 0.00%) 143691 ( 0.00%) 1294.51
http(c) 756 ( 0.01%) 74280 ( 0.00%) 98.25
smtp 654 ( 0.00%) 206998 ( 0.00%) 316.51
ftp 400 ( 0.00%) 337587 ( 0.00%) 843.97
pop3 84 ( 0.00%) 8450 ( 0.00%) 100.60
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
bgp 109 ( 0.00%) 13120 ( 0.00%) 120.37
other 1813 ( 0.01%) 213990 ( 0.00%) 118.03
udp6 14456 ( 0.10%) 2880342 ( 0.03%) 199.25
dns 13310 ( 0.09%) 2596650 ( 0.03%) 195.09
everque 1 ( 0.00%) 137 ( 0.00%) 137.00
other 1145 ( 0.01%) 283555 ( 0.00%) 247.65
icmp6 4701 ( 0.03%) 636107 ( 0.01%) 135.31
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 3478 ( 0.02%) 4551820 ( 0.05%) 1308.75
tcpdump file: 200803201545.dump.gz (362.59 MB)