Traffic Trace Info
DumpFile: 200903300530.dump
FileSize: 819.39MB
Id: 200903300530
StartTime: Mon Mar 30 05:30:01 2009
EndTime: Mon Mar 30 05:45:00 2009
TotalTime: 899.56 seconds
TotalCapSize: 639.12MB CapLen: 96 bytes
# of packets: 11813705 (7948.10MB)
AvgRate: 74.13Mbps stddev:9.81M
IP flow (unique src/dst pair) Information
# of flows: 638729 (avg. 18.50 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.8% 2.6% 2.4% 2.4% 1.6% 1.4% 1.2% 1.1% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 427651
Top 10 bandwidth usage (bytes/total in %):
18.9% 14.1% 12.4% 7.2% 4.8% 3.9% 2.6% 2.5% 2.4% 2.4%
# of IPv6 addresses: 1955
Top 10 bandwidth usage (bytes/total in %):
21.1% 20.6% 11.8% 10.1% 10.0% 9.6% 9.6% 7.8% 6.2% 6.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903300530.pktlen.png)
detailed numbers
[ 32- 63]: 2488353
[ 64- 127]: 2960411
[ 128- 255]: 509854
[ 256- 511]: 338843
[ 512- 1023]: 236784
[ 1024- 2047]: 5279460
Protocol Breakdown
![[protocol breakdown chart]](200903300530.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 11813705 (100.00%) 8334188760 (100.00%) 705.47
ip 11787767 ( 99.78%) 8328051008 ( 99.93%) 706.50
tcp 8782187 ( 74.34%) 7343169422 ( 88.11%) 836.14
http(s) 4290077 ( 36.31%) 5911566954 ( 70.93%) 1377.96
http(c) 2114355 ( 17.90%) 160991931 ( 1.93%) 76.14
squid 424798 ( 3.60%) 170498641 ( 2.05%) 401.36
smtp 225438 ( 1.91%) 30905536 ( 0.37%) 137.09
ftp 129893 ( 1.10%) 143005808 ( 1.72%) 1100.95
pop3 3432 ( 0.03%) 1337037 ( 0.02%) 389.58
imap 1375 ( 0.01%) 220261 ( 0.00%) 160.19
telnet 1886 ( 0.02%) 122530 ( 0.00%) 64.97
ssh 15565 ( 0.13%) 2397600 ( 0.03%) 154.04
dns 14016 ( 0.12%) 3410650 ( 0.04%) 243.34
bgp 138 ( 0.00%) 47240 ( 0.00%) 342.32
napster 118 ( 0.00%) 9558 ( 0.00%) 81.00
realaud 50 ( 0.00%) 6905 ( 0.00%) 138.10
rtsp 193 ( 0.00%) 50246 ( 0.00%) 260.34
icecast 221 ( 0.00%) 14288 ( 0.00%) 64.65
hotline 976 ( 0.01%) 60444 ( 0.00%) 61.93
other 1559411 ( 13.20%) 918509093 ( 11.02%) 589.01
udp 1976925 ( 16.73%) 860790104 ( 10.33%) 435.42
dns 952706 ( 8.06%) 209368662 ( 2.51%) 219.76
rip 2 ( 0.00%) 205 ( 0.00%) 102.50
realaud 104 ( 0.00%) 8447 ( 0.00%) 81.22
halflif 137 ( 0.00%) 21656 ( 0.00%) 158.07
starcra 36 ( 0.00%) 6815 ( 0.00%) 189.31
everque 47 ( 0.00%) 9909 ( 0.00%) 210.83
unreal 3969 ( 0.03%) 2845737 ( 0.03%) 716.99
quake 10 ( 0.00%) 1391 ( 0.00%) 139.10
cuseeme 6 ( 0.00%) 747 ( 0.00%) 124.50
other 1019682 ( 8.63%) 648351635 ( 7.78%) 635.84
icmp 994371 ( 8.42%) 111941367 ( 1.34%) 112.58
ipip 303 ( 0.00%) 36158 ( 0.00%) 119.33
ipsec 53 ( 0.00%) 8374 ( 0.00%) 158.00
ip6 27902 ( 0.24%) 11301981 ( 0.14%) 405.06
other 6026 ( 0.05%) 803602 ( 0.01%) 133.36
frag 72066 ( 0.61%) 69704550 ( 0.84%) 967.23
ip6 25938 ( 0.22%) 6137752 ( 0.07%) 236.63
tcp6 7379 ( 0.06%) 3093070 ( 0.04%) 419.17
http(s) 1120 ( 0.01%) 1070687 ( 0.01%) 955.97
http(c) 4140 ( 0.04%) 532756 ( 0.01%) 128.69
smtp 273 ( 0.00%) 116223 ( 0.00%) 425.73
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 374 ( 0.00%) 32335 ( 0.00%) 86.46
other 1470 ( 0.01%) 1340897 ( 0.02%) 912.17
udp6 11309 ( 0.10%) 1959517 ( 0.02%) 173.27
dns 9205 ( 0.08%) 1510108 ( 0.02%) 164.05
starcra 1 ( 0.00%) 116 ( 0.00%) 116.00
other 2103 ( 0.02%) 449293 ( 0.01%) 213.64
icmp6 7023 ( 0.06%) 898472 ( 0.01%) 127.93
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 197 ( 0.00%) 182613 ( 0.00%) 926.97
tcpdump file: 200903300530.dump.gz (279.49 MB)