Traffic Trace Info
DumpFile: 200903301445.dump
FileSize: 1495.81MB
Id: 200903301445
StartTime: Mon Mar 30 14:45:00 2009
EndTime: Mon Mar 30 15:00:01 2009
TotalTime: 900.46 seconds
TotalCapSize: 1174.67MB CapLen: 96 bytes
# of packets: 21045903 (13273.01MB)
AvgRate: 123.65Mbps stddev:12.54M
IP flow (unique src/dst pair) Information
# of flows: 808691 (avg. 26.02 pkts/flow)
Top 10 big flow size (bytes/total in %):
10.9% 8.0% 4.0% 1.6% 1.4% 1.3% 1.3% 1.1% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 499399
Top 10 bandwidth usage (bytes/total in %):
12.3% 10.9% 10.9% 10.0% 8.2% 8.1% 6.0% 4.1% 3.7% 3.0%
# of IPv6 addresses: 1822
Top 10 bandwidth usage (bytes/total in %):
26.0% 18.4% 17.5% 17.5% 9.0% 8.6% 7.6% 7.1% 6.7% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903301445.pktlen.png)
detailed numbers
[ 32- 63]: 4450167
[ 64- 127]: 5552688
[ 128- 255]: 993368
[ 256- 511]: 515399
[ 512- 1023]: 1289569
[ 1024- 2047]: 8244712
Protocol Breakdown
![[protocol breakdown chart]](200903301445.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 21045903 (100.00%) 13917757113 (100.00%) 661.30
ip 21015187 ( 99.85%) 13910543549 ( 99.95%) 661.93
tcp 18010044 ( 85.58%) 13132380433 ( 94.36%) 729.17
http(s) 7010774 ( 33.31%) 9344175896 ( 67.14%) 1332.83
http(c) 4521808 ( 21.49%) 442413846 ( 3.18%) 97.84
squid 280997 ( 1.34%) 119775461 ( 0.86%) 426.25
smtp 308285 ( 1.46%) 118119027 ( 0.85%) 383.15
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 128275 ( 0.61%) 112690142 ( 0.81%) 878.50
pop3 12233 ( 0.06%) 5598403 ( 0.04%) 457.65
imap 4323 ( 0.02%) 1082243 ( 0.01%) 250.35
telnet 3611 ( 0.02%) 688092 ( 0.00%) 190.55
ssh 2728388 ( 12.96%) 1764698688 ( 12.68%) 646.79
dns 12116 ( 0.06%) 1217093 ( 0.01%) 100.45
bgp 129 ( 0.00%) 40071 ( 0.00%) 310.63
napster 142 ( 0.00%) 10107 ( 0.00%) 71.18
realaud 3019 ( 0.01%) 188536 ( 0.00%) 62.45
rtsp 30134 ( 0.14%) 34260620 ( 0.25%) 1136.94
icecast 20808 ( 0.10%) 8846250 ( 0.06%) 425.14
hotline 53 ( 0.00%) 4315 ( 0.00%) 81.42
other 2944945 ( 13.99%) 1178571390 ( 8.47%) 400.20
udp 2173628 ( 10.33%) 676892665 ( 4.86%) 311.41
dns 1024237 ( 4.87%) 250992239 ( 1.80%) 245.05
realaud 12 ( 0.00%) 1435 ( 0.00%) 119.58
halflif 105 ( 0.00%) 17057 ( 0.00%) 162.45
starcra 37 ( 0.00%) 5819 ( 0.00%) 157.27
everque 67 ( 0.00%) 13403 ( 0.00%) 200.04
unreal 474 ( 0.00%) 234303 ( 0.00%) 494.31
quake 31 ( 0.00%) 3341 ( 0.00%) 107.77
cuseeme 4 ( 0.00%) 364 ( 0.00%) 91.00
other 1148497 ( 5.46%) 425480785 ( 3.06%) 370.47
icmp 726994 ( 3.45%) 59580968 ( 0.43%) 81.96
ipip 340 ( 0.00%) 40464 ( 0.00%) 119.01
ipsec 116 ( 0.00%) 18360 ( 0.00%) 158.28
ip6 47047 ( 0.22%) 30750711 ( 0.22%) 653.62
other 57018 ( 0.27%) 10879948 ( 0.08%) 190.82
frag 40619 ( 0.19%) 44421261 ( 0.32%) 1093.61
ip6 30716 ( 0.15%) 7213564 ( 0.05%) 234.85
tcp6 8652 ( 0.04%) 3617948 ( 0.03%) 418.16
http(s) 2035 ( 0.01%) 1358042 ( 0.01%) 667.34
http(c) 3802 ( 0.02%) 714462 ( 0.01%) 187.92
smtp 295 ( 0.00%) 122094 ( 0.00%) 413.88
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 367 ( 0.00%) 31381 ( 0.00%) 85.51
other 2151 ( 0.01%) 1391797 ( 0.01%) 647.05
udp6 15461 ( 0.07%) 2550309 ( 0.02%) 164.95
dns 13738 ( 0.07%) 2152699 ( 0.02%) 156.70
realaud 1 ( 0.00%) 108 ( 0.00%) 108.00
halflif 1 ( 0.00%) 111 ( 0.00%) 111.00
starcra 1 ( 0.00%) 116 ( 0.00%) 116.00
quake 1 ( 0.00%) 102 ( 0.00%) 102.00
other 1719 ( 0.01%) 397173 ( 0.00%) 231.05
icmp6 6338 ( 0.03%) 817294 ( 0.01%) 128.95
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 235 ( 0.00%) 223933 ( 0.00%) 952.91
tcpdump file: 200903301445.dump.gz (508.81 MB)