Traffic Trace Info
DumpFile: -
Id: 200803202345
StartTime: Thu Mar 20 23:45:01 2008
EndTime: Fri Mar 21 00:00:00 2008
TotalTime: 899.62 seconds
TotalCapSize: 687.06MB CapLen: 96 bytes
# of packets: 12641111 (6961.00MB)
AvgRate: 64.91Mbps stddev:10.87M
IP flow (unique src/dst pair) Information
# of flows: 772436 (avg. 16.37 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.9% 3.3% 2.8% 2.2% 1.3% 1.3% 1.3% 1.2% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 426106
Top 10 bandwidth usage (bytes/total in %):
12.3% 12.0% 9.8% 8.0% 4.3% 4.0% 3.3% 2.9% 2.5% 2.5%
# of IPv6 addresses: 1341
Top 10 bandwidth usage (bytes/total in %):
31.3% 24.9% 10.8% 7.6% 6.0% 4.8% 4.6% 3.9% 3.9% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200803202345.pktlen.png)
detailed numbers
[ 32- 63]: 3341811
[ 64- 127]: 3351168
[ 128- 255]: 808896
[ 256- 511]: 552273
[ 512- 1023]: 324020
[ 1024- 2047]: 4262943
Protocol Breakdown
![[protocol breakdown chart]](200803202345.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 12641111 (100.00%) 7299138540 (100.00%) 577.41
ip 12616553 ( 99.81%) 7293636536 ( 99.92%) 578.10
tcp 9790844 ( 77.45%) 6786101510 ( 92.97%) 693.11
http(s) 2729559 ( 21.59%) 3721971131 ( 50.99%) 1363.58
http(c) 1853682 ( 14.66%) 169529525 ( 2.32%) 91.46
squid 813342 ( 6.43%) 528408378 ( 7.24%) 649.68
smtp 898386 ( 7.11%) 158101473 ( 2.17%) 175.98
nntp 43 ( 0.00%) 11388 ( 0.00%) 264.84
ftp 41117 ( 0.33%) 17870696 ( 0.24%) 434.63
pop3 6150 ( 0.05%) 2666865 ( 0.04%) 433.64
imap 3777 ( 0.03%) 933716 ( 0.01%) 247.21
telnet 28 ( 0.00%) 2047 ( 0.00%) 73.11
ssh 61278 ( 0.48%) 32909263 ( 0.45%) 537.05
dns 2135 ( 0.02%) 166781 ( 0.00%) 78.12
bgp 212 ( 0.00%) 62144 ( 0.00%) 293.13
napster 1065 ( 0.01%) 590820 ( 0.01%) 554.76
rtsp 503 ( 0.00%) 133764 ( 0.00%) 265.93
icecast 13788 ( 0.11%) 15285603 ( 0.21%) 1108.62
hotline 10 ( 0.00%) 1690 ( 0.00%) 169.00
other 3365767 ( 26.63%) 2137456106 ( 29.28%) 635.06
udp 2044571 ( 16.17%) 439499777 ( 6.02%) 214.96
dns 1158176 ( 9.16%) 171269026 ( 2.35%) 147.88
rip 4 ( 0.00%) 771 ( 0.00%) 192.75
realaud 9326 ( 0.07%) 5488906 ( 0.08%) 588.56
halflif 18 ( 0.00%) 2977 ( 0.00%) 165.39
starcra 208 ( 0.00%) 20372 ( 0.00%) 97.94
everque 37 ( 0.00%) 5576 ( 0.00%) 150.70
unreal 125 ( 0.00%) 10648 ( 0.00%) 85.18
quake 12 ( 0.00%) 1176 ( 0.00%) 98.00
cuseeme 9 ( 0.00%) 1582 ( 0.00%) 175.78
other 876627 ( 6.93%) 262675127 ( 3.60%) 299.64
icmp 774050 ( 6.12%) 67024075 ( 0.92%) 86.59
ipip 304 ( 0.00%) 35438 ( 0.00%) 116.57
ip6 1027 ( 0.01%) 140936 ( 0.00%) 137.23
other 5757 ( 0.05%) 834800 ( 0.01%) 145.01
frag 1706 ( 0.01%) 1494634 ( 0.02%) 876.10
ip6 24558 ( 0.19%) 5502004 ( 0.08%) 224.04
tcp6 4500 ( 0.04%) 794829 ( 0.01%) 176.63
http(s) 123 ( 0.00%) 151224 ( 0.00%) 1229.46
http(c) 757 ( 0.01%) 73613 ( 0.00%) 97.24
smtp 660 ( 0.01%) 253087 ( 0.00%) 383.47
ftp 11 ( 0.00%) 950 ( 0.00%) 86.36
pop3 81 ( 0.00%) 8246 ( 0.00%) 101.80
ssh 1 ( 0.00%) 74 ( 0.00%) 74.00
dns 7 ( 0.00%) 635 ( 0.00%) 90.71
bgp 114 ( 0.00%) 13990 ( 0.00%) 122.72
other 2746 ( 0.02%) 293010 ( 0.00%) 106.70
udp6 13885 ( 0.11%) 2701872 ( 0.04%) 194.59
dns 12745 ( 0.10%) 2443447 ( 0.03%) 191.72
other 1140 ( 0.01%) 258425 ( 0.00%) 226.69
icmp6 4922 ( 0.04%) 680097 ( 0.01%) 138.17
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1221 ( 0.01%) 1321126 ( 0.02%) 1082.00
tcpdump file: 200803202345.dump.gz (325.88 MB)