Traffic Trace Info
DumpFile: -
Id: 200803201745
StartTime: Thu Mar 20 17:45:01 2008
EndTime: Thu Mar 20 18:00:01 2008
TotalTime: 899.84 seconds
TotalCapSize: 785.63MB CapLen: 96 bytes
# of packets: 14350505 (7598.57MB)
AvgRate: 70.84Mbps stddev:13.19M
IP flow (unique src/dst pair) Information
# of flows: 1022843 (avg. 14.03 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.2% 5.1% 2.0% 1.8% 1.7% 1.6% 1.5% 1.5% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 602334
Top 10 bandwidth usage (bytes/total in %):
9.9% 7.3% 6.1% 5.9% 5.3% 5.2% 4.2% 4.0% 3.8% 2.9%
# of IPv6 addresses: 1388
Top 10 bandwidth usage (bytes/total in %):
40.9% 36.4% 11.5% 7.8% 5.8% 3.4% 3.4% 3.3% 3.1% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803201745.pktlen.png)
detailed numbers
[ 32- 63]: 3096405
[ 64- 127]: 4437921
[ 128- 255]: 1040880
[ 256- 511]: 805516
[ 512- 1023]: 435266
[ 1024- 2047]: 4534517
Protocol Breakdown
![[protocol breakdown chart]](200803201745.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 14350505 (100.00%) 7967676625 (100.00%) 555.22
ip 14323995 ( 99.82%) 7960548288 ( 99.91%) 555.75
tcp 10760392 ( 74.98%) 7162556431 ( 89.90%) 665.64
http(s) 2819611 ( 19.65%) 3771098187 ( 47.33%) 1337.45
http(c) 1988336 ( 13.86%) 194430739 ( 2.44%) 97.79
squid 697247 ( 4.86%) 403777903 ( 5.07%) 579.10
smtp 794157 ( 5.53%) 219607609 ( 2.76%) 276.53
nntp 4 ( 0.00%) 246 ( 0.00%) 61.50
ftp 200878 ( 1.40%) 106319647 ( 1.33%) 529.27
pop3 6865 ( 0.05%) 3733477 ( 0.05%) 543.84
imap 5987 ( 0.04%) 3732312 ( 0.05%) 623.40
telnet 391 ( 0.00%) 26071 ( 0.00%) 66.68
ssh 1291963 ( 9.00%) 801051376 ( 10.05%) 620.03
dns 2056 ( 0.01%) 186135 ( 0.00%) 90.53
bgp 189 ( 0.00%) 48464 ( 0.00%) 256.42
napster 245 ( 0.00%) 23375 ( 0.00%) 95.41
realaud 15 ( 0.00%) 2342 ( 0.00%) 156.13
rtsp 359 ( 0.00%) 62136 ( 0.00%) 173.08
icecast 24626 ( 0.17%) 15960800 ( 0.20%) 648.13
hotline 19 ( 0.00%) 4407 ( 0.00%) 231.95
other 2927411 ( 20.40%) 1642489225 ( 20.61%) 561.07
udp 2714437 ( 18.92%) 713579946 ( 8.96%) 262.88
dns 1157216 ( 8.06%) 171749184 ( 2.16%) 148.42
realaud 10479 ( 0.07%) 5557226 ( 0.07%) 530.32
halflif 16 ( 0.00%) 3826 ( 0.00%) 239.12
starcra 197 ( 0.00%) 21679 ( 0.00%) 110.05
everque 33 ( 0.00%) 4824 ( 0.00%) 146.18
unreal 19 ( 0.00%) 3723 ( 0.00%) 195.95
quake 14 ( 0.00%) 1786 ( 0.00%) 127.57
cuseeme 7 ( 0.00%) 1150 ( 0.00%) 164.29
other 1546141 ( 10.77%) 536141692 ( 6.73%) 346.76
icmp 727011 ( 5.07%) 60408403 ( 0.76%) 83.09
ipip 328 ( 0.00%) 39260 ( 0.00%) 119.70
ip6 1020 ( 0.01%) 139481 ( 0.00%) 136.75
other 120807 ( 0.84%) 23824767 ( 0.30%) 197.21
frag 3934 ( 0.03%) 3222121 ( 0.04%) 819.04
ip6 26510 ( 0.18%) 7128337 ( 0.09%) 268.89
tcp6 4260 ( 0.03%) 937375 ( 0.01%) 220.04
http(s) 161 ( 0.00%) 204704 ( 0.00%) 1271.45
http(c) 692 ( 0.00%) 69597 ( 0.00%) 100.57
smtp 1148 ( 0.01%) 409832 ( 0.01%) 357.00
ftp 34 ( 0.00%) 3141 ( 0.00%) 92.38
pop3 95 ( 0.00%) 9652 ( 0.00%) 101.60
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 112 ( 0.00%) 13707 ( 0.00%) 122.38
other 2010 ( 0.01%) 226033 ( 0.00%) 112.45
udp6 15520 ( 0.11%) 2930073 ( 0.04%) 188.79
dns 14435 ( 0.10%) 2704056 ( 0.03%) 187.33
everque 2 ( 0.00%) 253 ( 0.00%) 126.50
other 1083 ( 0.01%) 225764 ( 0.00%) 208.46
icmp6 4971 ( 0.03%) 815681 ( 0.01%) 164.09
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 1728 ( 0.01%) 2440992 ( 0.03%) 1412.61
tcpdump file: 200803201745.dump.gz (374.87 MB)