Traffic Trace Info
DumpFile: 200903301045.dump
FileSize: 1082.46MB
Id: 200903301045
StartTime: Mon Mar 30 10:45:01 2009
EndTime: Mon Mar 30 11:00:00 2009
TotalTime: 899.25 seconds
TotalCapSize: 846.78MB CapLen: 96 bytes
# of packets: 15444101 (9470.39MB)
AvgRate: 88.32Mbps stddev:10.65M
IP flow (unique src/dst pair) Information
# of flows: 621941 (avg. 24.83 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.5% 2.2% 2.2% 1.5% 1.4% 1.2% 1.1% 1.0% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 423772
Top 10 bandwidth usage (bytes/total in %):
10.6% 8.3% 8.2% 5.1% 4.9% 4.0% 3.2% 3.1% 2.7% 2.6%
# of IPv6 addresses: 1642
Top 10 bandwidth usage (bytes/total in %):
19.7% 15.8% 15.8% 14.2% 10.6% 8.1% 8.1% 7.7% 6.5% 6.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903301045.pktlen.png)
detailed numbers
[ 32- 63]: 3211959
[ 64- 127]: 4465059
[ 128- 255]: 768242
[ 256- 511]: 377007
[ 512- 1023]: 505728
[ 1024- 2047]: 6116106
Protocol Breakdown
![[protocol breakdown chart]](200903301045.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 15444101 (100.00%) 9930428600 (100.00%) 642.99
ip 15413576 ( 99.80%) 9922458949 ( 99.92%) 643.75
tcp 11931800 ( 77.26%) 8622591024 ( 86.83%) 722.66
http(s) 4779863 ( 30.95%) 6484100646 ( 65.30%) 1356.55
http(c) 2777819 ( 17.99%) 283657131 ( 2.86%) 102.12
squid 251917 ( 1.63%) 59324836 ( 0.60%) 235.49
smtp 250311 ( 1.62%) 51405759 ( 0.52%) 205.37
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 94697 ( 0.61%) 96875864 ( 0.98%) 1023.01
pop3 8976 ( 0.06%) 3149888 ( 0.03%) 350.92
imap 3205 ( 0.02%) 989800 ( 0.01%) 308.83
telnet 2585 ( 0.02%) 338619 ( 0.00%) 130.99
ssh 1644236 ( 10.65%) 255568420 ( 2.57%) 155.43
dns 12163 ( 0.08%) 1212044 ( 0.01%) 99.65
bgp 144 ( 0.00%) 46528 ( 0.00%) 323.11
napster 122 ( 0.00%) 9120 ( 0.00%) 74.75
realaud 28 ( 0.00%) 2440 ( 0.00%) 87.14
rtsp 58268 ( 0.38%) 10889597 ( 0.11%) 186.89
icecast 8612 ( 0.06%) 7775488 ( 0.08%) 902.87
hotline 729 ( 0.00%) 45150 ( 0.00%) 61.93
other 2038124 ( 13.20%) 1367199634 ( 13.77%) 670.81
udp 2399086 ( 15.53%) 1191850437 ( 12.00%) 496.79
dns 913471 ( 5.91%) 231721127 ( 2.33%) 253.67
realaud 9 ( 0.00%) 883 ( 0.00%) 98.11
halflif 126 ( 0.00%) 20929 ( 0.00%) 166.10
starcra 18 ( 0.00%) 3473 ( 0.00%) 192.94
everque 59 ( 0.00%) 10468 ( 0.00%) 177.42
unreal 1985 ( 0.01%) 1393925 ( 0.01%) 702.23
quake 16 ( 0.00%) 1561 ( 0.00%) 97.56
cuseeme 10 ( 0.00%) 1281 ( 0.00%) 128.10
other 1483270 ( 9.60%) 958601358 ( 9.65%) 646.28
icmp 1039885 ( 6.73%) 80755307 ( 0.81%) 77.66
ipip 311 ( 0.00%) 37970 ( 0.00%) 122.09
ipsec 112 ( 0.00%) 17728 ( 0.00%) 158.29
ip6 36771 ( 0.24%) 26450279 ( 0.27%) 719.32
other 5611 ( 0.04%) 756204 ( 0.01%) 134.77
frag 36168 ( 0.23%) 39637549 ( 0.40%) 1095.93
ip6 30525 ( 0.20%) 7969651 ( 0.08%) 261.09
tcp6 8266 ( 0.05%) 4164772 ( 0.04%) 503.84
http(s) 2195 ( 0.01%) 1840843 ( 0.02%) 838.65
http(c) 3612 ( 0.02%) 675999 ( 0.01%) 187.15
smtp 377 ( 0.00%) 122200 ( 0.00%) 324.14
ftp 20 ( 0.00%) 3755 ( 0.00%) 187.75
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 363 ( 0.00%) 30313 ( 0.00%) 83.51
other 1697 ( 0.01%) 1491490 ( 0.02%) 878.90
udp6 15288 ( 0.10%) 2509047 ( 0.03%) 164.12
dns 13456 ( 0.09%) 2124555 ( 0.02%) 157.89
starcra 1 ( 0.00%) 116 ( 0.00%) 116.00
other 1831 ( 0.01%) 384376 ( 0.00%) 209.93
icmp6 6459 ( 0.04%) 841439 ( 0.01%) 130.27
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 481 ( 0.00%) 450177 ( 0.00%) 935.92
tcpdump file: 200903301045.dump.gz (379.44 MB)