Traffic Trace Info
DumpFile: 200903301330.dump
FileSize: 1496.15MB
Id: 200903301330
StartTime: Mon Mar 30 13:30:00 2009
EndTime: Mon Mar 30 13:45:01 2009
TotalTime: 900.72 seconds
TotalCapSize: 1178.76MB CapLen: 96 bytes
# of packets: 20798662 (15035.25MB)
AvgRate: 140.02Mbps stddev:18.31M
IP flow (unique src/dst pair) Information
# of flows: 668582 (avg. 31.11 pkts/flow)
Top 10 big flow size (bytes/total in %):
35.5% 8.2% 1.4% 1.1% 1.1% 0.7% 0.7% 0.6% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 434797
Top 10 bandwidth usage (bytes/total in %):
36.1% 35.5% 8.9% 8.2% 8.1% 6.2% 4.5% 2.9% 1.7% 1.7%
# of IPv6 addresses: 1739
Top 10 bandwidth usage (bytes/total in %):
19.8% 17.3% 17.3% 13.0% 10.4% 8.5% 6.8% 6.6% 6.0% 4.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903301330.pktlen.png)
detailed numbers
[ 32- 63]: 3631002
[ 64- 127]: 4832751
[ 128- 255]: 939424
[ 256- 511]: 755413
[ 512- 1023]: 565804
[ 1024- 2047]: 10074268
Protocol Breakdown
![[protocol breakdown chart]](200903301330.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 20798662 (100.00%) 15765606815 (100.00%) 758.01
ip 20766782 ( 99.85%) 15757987651 ( 99.95%) 758.81
tcp 17782697 ( 85.50%) 15016376032 ( 95.25%) 844.44
http(s) 4612627 ( 22.18%) 6138558282 ( 38.94%) 1330.82
http(c) 3160447 ( 15.20%) 342178677 ( 2.17%) 108.27
squid 362107 ( 1.74%) 84225976 ( 0.53%) 232.60
smtp 219340 ( 1.05%) 70674695 ( 0.45%) 322.22
ftp 162156 ( 0.78%) 158225657 ( 1.00%) 975.76
pop3 8787 ( 0.04%) 4061613 ( 0.03%) 462.23
imap 3959 ( 0.02%) 690400 ( 0.00%) 174.39
telnet 3861 ( 0.02%) 799107 ( 0.01%) 206.97
ssh 5927784 ( 28.50%) 5802434903 ( 36.80%) 978.85
dns 14835 ( 0.07%) 3478043 ( 0.02%) 234.45
bgp 134 ( 0.00%) 41744 ( 0.00%) 311.52
napster 120 ( 0.00%) 10250 ( 0.00%) 85.42
realaud 52 ( 0.00%) 8344 ( 0.00%) 160.46
rtsp 168387 ( 0.81%) 17602341 ( 0.11%) 104.54
icecast 410179 ( 1.97%) 32202368 ( 0.20%) 78.51
hotline 18 ( 0.00%) 2047 ( 0.00%) 113.72
other 2727901 ( 13.12%) 2361181405 ( 14.98%) 865.57
udp 2012976 ( 9.68%) 657622873 ( 4.17%) 326.69
dns 865561 ( 4.16%) 203483753 ( 1.29%) 235.09
realaud 1442 ( 0.01%) 93731 ( 0.00%) 65.00
halflif 115 ( 0.00%) 20594 ( 0.00%) 179.08
starcra 19 ( 0.00%) 3473 ( 0.00%) 182.79
everque 84 ( 0.00%) 21078 ( 0.00%) 250.93
unreal 829 ( 0.00%) 508927 ( 0.00%) 613.90
quake 17 ( 0.00%) 1309 ( 0.00%) 77.00
cuseeme 6 ( 0.00%) 519 ( 0.00%) 86.50
other 1144781 ( 5.50%) 453390098 ( 2.88%) 396.05
icmp 909827 ( 4.37%) 71927100 ( 0.46%) 79.06
ipip 312 ( 0.00%) 36338 ( 0.00%) 116.47
ipsec 114 ( 0.00%) 18012 ( 0.00%) 158.00
ip6 29381 ( 0.14%) 6473723 ( 0.04%) 220.34
other 31475 ( 0.15%) 5533573 ( 0.04%) 175.81
frag 37671 ( 0.18%) 40987903 ( 0.26%) 1088.05
ip6 31880 ( 0.15%) 7619164 ( 0.05%) 239.00
tcp6 9633 ( 0.05%) 3878155 ( 0.02%) 402.59
http(s) 2245 ( 0.01%) 1588953 ( 0.01%) 707.77
http(c) 5283 ( 0.03%) 814116 ( 0.01%) 154.10
smtp 15 ( 0.00%) 10554 ( 0.00%) 703.60
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
dns 6 ( 0.00%) 552 ( 0.00%) 92.00
bgp 353 ( 0.00%) 29134 ( 0.00%) 82.53
other 1729 ( 0.01%) 1434674 ( 0.01%) 829.77
udp6 15680 ( 0.08%) 2593573 ( 0.02%) 165.41
dns 13550 ( 0.07%) 2133451 ( 0.01%) 157.45
realaud 2 ( 0.00%) 203 ( 0.00%) 101.50
halflif 1 ( 0.00%) 116 ( 0.00%) 116.00
everque 1 ( 0.00%) 109 ( 0.00%) 109.00
other 2126 ( 0.01%) 459694 ( 0.00%) 216.22
icmp6 6211 ( 0.03%) 834270 ( 0.01%) 134.32
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 326 ( 0.00%) 309086 ( 0.00%) 948.12
tcpdump file: 200903301330.dump.gz (506.65 MB)