Traffic Trace Info
DumpFile: -
Id: 200803201645
StartTime: Thu Mar 20 16:45:00 2008
EndTime: Thu Mar 20 17:00:00 2008
TotalTime: 900.18 seconds
TotalCapSize: 796.67MB CapLen: 96 bytes
# of packets: 14739267 (8699.54MB)
AvgRate: 81.08Mbps stddev:12.63M
IP flow (unique src/dst pair) Information
# of flows: 662266 (avg. 22.26 pkts/flow)
Top 10 big flow size (bytes/total in %):
12.4% 3.5% 3.0% 1.9% 1.8% 1.6% 1.4% 1.4% 1.4% 1.3%
IP address Information
# of IPv4 addresses: 359579
Top 10 bandwidth usage (bytes/total in %):
21.2% 12.8% 6.4% 6.2% 5.3% 5.0% 3.6% 3.0% 2.5% 2.3%
# of IPv6 addresses: 1335
Top 10 bandwidth usage (bytes/total in %):
72.6% 72.6% 15.8% 14.7% 1.2% 0.9% 0.8% 0.7% 0.7% 0.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803201645.pktlen.png)
detailed numbers
[ 32- 63]: 3501914
[ 64- 127]: 3833495
[ 128- 255]: 968196
[ 256- 511]: 563253
[ 512- 1023]: 435364
[ 1024- 2047]: 5437045
Protocol Breakdown
![[protocol breakdown chart]](200803201645.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 14739267 (100.00%) 9122133342 (100.00%) 618.90
ip 14697897 ( 99.72%) 9092116550 ( 99.67%) 618.60
tcp 11596116 ( 78.67%) 8401526399 ( 92.10%) 724.51
http(s) 3362378 ( 22.81%) 4497639867 ( 49.30%) 1337.64
http(c) 1879171 ( 12.75%) 181840864 ( 1.99%) 96.77
squid 521970 ( 3.54%) 277548570 ( 3.04%) 531.73
smtp 630702 ( 4.28%) 116298468 ( 1.27%) 184.40
nntp 3 ( 0.00%) 186 ( 0.00%) 62.00
ftp 338601 ( 2.30%) 265409177 ( 2.91%) 783.84
pop3 7544 ( 0.05%) 2926534 ( 0.03%) 387.93
imap 5445 ( 0.04%) 2605420 ( 0.03%) 478.50
telnet 395 ( 0.00%) 25787 ( 0.00%) 65.28
ssh 729866 ( 4.95%) 280538709 ( 3.08%) 384.37
dns 2083 ( 0.01%) 162876 ( 0.00%) 78.19
bgp 201 ( 0.00%) 66355 ( 0.00%) 330.12
napster 166 ( 0.00%) 16309 ( 0.00%) 98.25
realaud 5 ( 0.00%) 312 ( 0.00%) 62.40
rtsp 366 ( 0.00%) 75683 ( 0.00%) 206.78
icecast 2865 ( 0.02%) 216310 ( 0.00%) 75.50
hotline 6 ( 0.00%) 1386 ( 0.00%) 231.00
other 4114278 ( 27.91%) 2776149326 ( 30.43%) 674.76
udp 2552748 ( 17.32%) 633374812 ( 6.94%) 248.11
dns 989377 ( 6.71%) 146394072 ( 1.60%) 147.97
realaud 11839 ( 0.08%) 5641259 ( 0.06%) 476.50
halflif 10 ( 0.00%) 1363 ( 0.00%) 136.30
starcra 46 ( 0.00%) 8014 ( 0.00%) 174.22
everque 38 ( 0.00%) 6512 ( 0.00%) 171.37
unreal 25 ( 0.00%) 7004 ( 0.00%) 280.16
quake 9 ( 0.00%) 1328 ( 0.00%) 147.56
cuseeme 3 ( 0.00%) 564 ( 0.00%) 188.00
other 1551367 ( 10.53%) 481288794 ( 5.28%) 310.24
icmp 488486 ( 3.31%) 44007368 ( 0.48%) 90.09
ipip 320 ( 0.00%) 36842 ( 0.00%) 115.13
ip6 1095 ( 0.01%) 151097 ( 0.00%) 137.99
other 59132 ( 0.40%) 13020032 ( 0.14%) 220.19
frag 2332 ( 0.02%) 1833527 ( 0.02%) 786.25
ip6 41370 ( 0.28%) 30016792 ( 0.33%) 725.57
tcp6 20937 ( 0.14%) 22586090 ( 0.25%) 1078.76
http(s) 17224 ( 0.12%) 21943031 ( 0.24%) 1273.98
http(c) 723 ( 0.00%) 74083 ( 0.00%) 102.47
smtp 743 ( 0.01%) 313437 ( 0.00%) 421.85
pop3 108 ( 0.00%) 10718 ( 0.00%) 99.24
bgp 117 ( 0.00%) 14967 ( 0.00%) 127.92
other 2022 ( 0.01%) 229854 ( 0.00%) 113.68
udp6 12167 ( 0.08%) 2354996 ( 0.03%) 193.56
dns 11116 ( 0.08%) 2127492 ( 0.02%) 191.39
other 1051 ( 0.01%) 227504 ( 0.00%) 216.46
icmp6 4845 ( 0.03%) 655398 ( 0.01%) 135.27
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 3390 ( 0.02%) 4416092 ( 0.05%) 1302.68
tcpdump file: 200803201645.dump.gz (372.69 MB)