Traffic Trace Info
DumpFile: -
Id: 200803202215
StartTime: Thu Mar 20 22:15:01 2008
EndTime: Thu Mar 20 22:30:00 2008
TotalTime: 899.64 seconds
TotalCapSize: 689.25MB CapLen: 96 bytes
# of packets: 12700833 (6844.14MB)
AvgRate: 63.82Mbps stddev:10.75M
IP flow (unique src/dst pair) Information
# of flows: 721622 (avg. 17.60 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.4% 2.0% 1.8% 1.4% 1.3% 1.3% 1.2% 1.1% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 389917
Top 10 bandwidth usage (bytes/total in %):
9.6% 9.3% 7.0% 6.9% 5.5% 5.5% 3.3% 2.8% 2.5% 2.5%
# of IPv6 addresses: 1315
Top 10 bandwidth usage (bytes/total in %):
35.7% 29.0% 5.8% 5.0% 4.1% 3.8% 3.8% 3.6% 3.5% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803202215.pktlen.png)
detailed numbers
[ 32- 63]: 3270295
[ 64- 127]: 3446157
[ 128- 255]: 921786
[ 256- 511]: 562240
[ 512- 1023]: 348538
[ 1024- 2047]: 4151817
Protocol Breakdown
![[protocol breakdown chart]](200803202215.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 12700833 (100.00%) 7176596222 (100.00%) 565.05
ip 12679286 ( 99.83%) 7171674247 ( 99.93%) 565.62
tcp 9657553 ( 76.04%) 6617428128 ( 92.21%) 685.21
http(s) 3082599 ( 24.27%) 4238647937 ( 59.06%) 1375.02
http(c) 2056891 ( 16.19%) 176207823 ( 2.46%) 85.67
squid 869209 ( 6.84%) 580418317 ( 8.09%) 667.75
smtp 761579 ( 6.00%) 117961675 ( 1.64%) 154.89
nntp 4 ( 0.00%) 246 ( 0.00%) 61.50
ftp 65962 ( 0.52%) 20012445 ( 0.28%) 303.39
pop3 6449 ( 0.05%) 2993423 ( 0.04%) 464.17
imap 4962 ( 0.04%) 2443635 ( 0.03%) 492.47
telnet 25 ( 0.00%) 1868 ( 0.00%) 74.72
ssh 51221 ( 0.40%) 8218879 ( 0.11%) 160.46
dns 8936 ( 0.07%) 10428430 ( 0.15%) 1167.01
bgp 225 ( 0.00%) 67678 ( 0.00%) 300.79
napster 342 ( 0.00%) 33411 ( 0.00%) 97.69
realaud 5 ( 0.00%) 693 ( 0.00%) 138.60
rtsp 782 ( 0.01%) 156342 ( 0.00%) 199.93
icecast 469 ( 0.00%) 34487 ( 0.00%) 73.53
other 2747890 ( 21.64%) 1459800659 ( 20.34%) 531.24
udp 2256584 ( 17.77%) 485312374 ( 6.76%) 215.07
dns 1177240 ( 9.27%) 171065259 ( 2.38%) 145.31
rip 2 ( 0.00%) 413 ( 0.00%) 206.50
realaud 13508 ( 0.11%) 5738482 ( 0.08%) 424.82
halflif 30 ( 0.00%) 3600 ( 0.00%) 120.00
starcra 222 ( 0.00%) 22468 ( 0.00%) 101.21
everque 36 ( 0.00%) 5848 ( 0.00%) 162.44
unreal 131 ( 0.00%) 9811 ( 0.00%) 74.89
quake 14 ( 0.00%) 1189 ( 0.00%) 84.93
cuseeme 6 ( 0.00%) 891 ( 0.00%) 148.50
other 1065373 ( 8.39%) 308446469 ( 4.30%) 289.52
icmp 714918 ( 5.63%) 59330471 ( 0.83%) 82.99
ipip 318 ( 0.00%) 38884 ( 0.00%) 122.28
ip6 1039 ( 0.01%) 142858 ( 0.00%) 137.50
other 48874 ( 0.38%) 9421532 ( 0.13%) 192.77
frag 1519 ( 0.01%) 1324584 ( 0.02%) 872.01
ip6 21547 ( 0.17%) 4921975 ( 0.07%) 228.43
tcp6 4026 ( 0.03%) 624555 ( 0.01%) 155.13
http(c) 1228 ( 0.01%) 119885 ( 0.00%) 97.63
smtp 587 ( 0.00%) 250643 ( 0.00%) 426.99
pop3 92 ( 0.00%) 9152 ( 0.00%) 99.48
dns 16 ( 0.00%) 3596 ( 0.00%) 224.75
bgp 109 ( 0.00%) 13376 ( 0.00%) 122.72
other 1994 ( 0.02%) 227903 ( 0.00%) 114.29
udp6 11643 ( 0.09%) 2261807 ( 0.03%) 194.26
dns 10501 ( 0.08%) 2021690 ( 0.03%) 192.52
everque 1 ( 0.00%) 116 ( 0.00%) 116.00
other 1141 ( 0.01%) 240001 ( 0.00%) 210.34
icmp6 4591 ( 0.04%) 664766 ( 0.01%) 144.80
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1257 ( 0.01%) 1366767 ( 0.02%) 1087.32
tcpdump file: 200803202215.dump.gz (331.50 MB)