Traffic Trace Info
DumpFile: -
Id: 200803202115
StartTime: Thu Mar 20 21:15:00 2008
EndTime: Thu Mar 20 21:30:01 2008
TotalTime: 900.36 seconds
TotalCapSize: 667.58MB CapLen: 96 bytes
# of packets: 12225693 (6008.14MB)
AvgRate: 55.98Mbps stddev:10.22M
IP flow (unique src/dst pair) Information
# of flows: 870740 (avg. 14.04 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.9% 1.9% 1.9% 1.6% 1.4% 1.3% 1.3% 1.1% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 493257
Top 10 bandwidth usage (bytes/total in %):
16.1% 10.2% 10.1% 7.8% 5.0% 2.8% 2.0% 2.0% 1.9% 1.9%
# of IPv6 addresses: 1358
Top 10 bandwidth usage (bytes/total in %):
31.1% 24.5% 6.9% 6.4% 6.2% 5.0% 4.5% 4.1% 4.0% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803202115.pktlen.png)
detailed numbers
[ 32- 63]: 3176260
[ 64- 127]: 3718342
[ 128- 255]: 949149
[ 256- 511]: 497201
[ 512- 1023]: 341372
[ 1024- 2047]: 3543369
Protocol Breakdown
![[protocol breakdown chart]](200803202115.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 12225693 (100.00%) 6299989345 (100.00%) 515.31
ip 12201424 ( 99.80%) 6294802476 ( 99.92%) 515.91
tcp 9126210 ( 74.65%) 5751608423 ( 91.30%) 630.23
http(s) 2287895 ( 18.71%) 3117301822 ( 49.48%) 1362.52
http(c) 1541981 ( 12.61%) 134764003 ( 2.14%) 87.40
squid 630259 ( 5.16%) 358600616 ( 5.69%) 568.97
smtp 1095284 ( 8.96%) 171041198 ( 2.71%) 156.16
nntp 4 ( 0.00%) 246 ( 0.00%) 61.50
ftp 59847 ( 0.49%) 30345222 ( 0.48%) 507.05
pop3 5305 ( 0.04%) 2617539 ( 0.04%) 493.41
imap 2965 ( 0.02%) 1098725 ( 0.02%) 370.56
telnet 579 ( 0.00%) 37349 ( 0.00%) 64.51
ssh 360469 ( 2.95%) 53301805 ( 0.85%) 147.87
dns 2372 ( 0.02%) 182835 ( 0.00%) 77.08
bgp 184 ( 0.00%) 51176 ( 0.00%) 278.13
napster 232 ( 0.00%) 23915 ( 0.00%) 103.08
realaud 37 ( 0.00%) 4537 ( 0.00%) 122.62
rtsp 39326 ( 0.32%) 16181161 ( 0.26%) 411.46
icecast 2642 ( 0.02%) 861159 ( 0.01%) 325.95
hotline 17 ( 0.00%) 2495 ( 0.00%) 146.76
other 3096797 ( 25.33%) 1865191720 ( 29.61%) 602.30
udp 2201328 ( 18.01%) 464118490 ( 7.37%) 210.84
dns 1218291 ( 9.97%) 177611770 ( 2.82%) 145.79
realaud 12405 ( 0.10%) 5676774 ( 0.09%) 457.62
halflif 28 ( 0.00%) 3127 ( 0.00%) 111.68
starcra 228 ( 0.00%) 24808 ( 0.00%) 108.81
everque 55 ( 0.00%) 7162 ( 0.00%) 130.22
unreal 75 ( 0.00%) 7152 ( 0.00%) 95.36
quake 14 ( 0.00%) 1714 ( 0.00%) 122.43
cuseeme 11 ( 0.00%) 1876 ( 0.00%) 170.55
other 970182 ( 7.94%) 280774027 ( 4.46%) 289.40
icmp 811424 ( 6.64%) 66507242 ( 1.06%) 81.96
ipip 302 ( 0.00%) 36680 ( 0.00%) 121.46
ip6 1064 ( 0.01%) 146955 ( 0.00%) 138.12
other 61096 ( 0.50%) 12384686 ( 0.20%) 202.71
frag 2935 ( 0.02%) 2280707 ( 0.04%) 777.07
ip6 24269 ( 0.20%) 5186869 ( 0.08%) 213.72
tcp6 4052 ( 0.03%) 535156 ( 0.01%) 132.07
http(c) 781 ( 0.01%) 78304 ( 0.00%) 100.26
smtp 445 ( 0.00%) 142661 ( 0.00%) 320.59
pop3 86 ( 0.00%) 8598 ( 0.00%) 99.98
ssh 541 ( 0.00%) 58087 ( 0.00%) 107.37
dns 15 ( 0.00%) 2431 ( 0.00%) 162.07
bgp 101 ( 0.00%) 11563 ( 0.00%) 114.49
other 2083 ( 0.02%) 233512 ( 0.00%) 112.10
udp6 14167 ( 0.12%) 2690484 ( 0.04%) 189.91
dns 13050 ( 0.11%) 2457840 ( 0.04%) 188.34
everque 1 ( 0.00%) 116 ( 0.00%) 116.00
other 1116 ( 0.01%) 232528 ( 0.00%) 208.36
icmp6 4911 ( 0.04%) 732887 ( 0.01%) 149.23
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1109 ( 0.01%) 1224262 ( 0.02%) 1103.93
tcpdump file: 200803202115.dump.gz (328.30 MB)