Traffic Trace Info
DumpFile: 200903301930.dump
FileSize: 1175.24MB
Id: 200903301930
StartTime: Mon Mar 30 19:30:01 2009
EndTime: Mon Mar 30 19:45:01 2009
TotalTime: 899.82 seconds
TotalCapSize: 915.73MB CapLen: 96 bytes
# of packets: 17003804 (11760.05MB)
AvgRate: 109.65Mbps stddev:11.10M
IP flow (unique src/dst pair) Information
# of flows: 825053 (avg. 20.61 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.1% 2.1% 1.4% 1.4% 1.1% 1.1% 1.0% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 531652
Top 10 bandwidth usage (bytes/total in %):
12.8% 12.0% 10.9% 4.8% 4.4% 3.2% 3.1% 3.1% 3.1% 2.6%
# of IPv6 addresses: 2309
Top 10 bandwidth usage (bytes/total in %):
25.8% 17.7% 17.0% 16.5% 14.8% 9.6% 8.1% 4.1% 3.6% 3.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903301930.pktlen.png)
detailed numbers
[ 32- 63]: 3867478
[ 64- 127]: 3567129
[ 128- 255]: 1023525
[ 256- 511]: 397735
[ 512- 1023]: 429958
[ 1024- 2047]: 7717979
Protocol Breakdown
![[protocol breakdown chart]](200903301930.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 17003804 (100.00%) 12331311239 (100.00%) 725.21
ip 16972221 ( 99.81%) 12323536200 ( 99.94%) 726.10
tcp 13805160 ( 81.19%) 11326517685 ( 91.85%) 820.46
http(s) 6325336 ( 37.20%) 8679429197 ( 70.39%) 1372.17
http(c) 3522021 ( 20.71%) 314568568 ( 2.55%) 89.31
squid 413604 ( 2.43%) 250649442 ( 2.03%) 606.01
smtp 356863 ( 2.10%) 88087573 ( 0.71%) 246.84
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 116607 ( 0.69%) 102260720 ( 0.83%) 876.97
pop3 7066 ( 0.04%) 2131719 ( 0.02%) 301.69
imap 6252 ( 0.04%) 1213922 ( 0.01%) 194.17
telnet 3554 ( 0.02%) 669399 ( 0.01%) 188.35
ssh 134901 ( 0.79%) 19094796 ( 0.15%) 141.55
dns 15254 ( 0.09%) 3548914 ( 0.03%) 232.65
bgp 142 ( 0.00%) 49314 ( 0.00%) 347.28
napster 912 ( 0.01%) 789253 ( 0.01%) 865.41
realaud 27 ( 0.00%) 3683 ( 0.00%) 136.41
rtsp 16293 ( 0.10%) 8449386 ( 0.07%) 518.59
icecast 16885 ( 0.10%) 1118922 ( 0.01%) 66.27
other 2869406 ( 16.88%) 1854450657 ( 15.04%) 646.28
udp 2284470 ( 13.44%) 837004940 ( 6.79%) 366.39
dns 1030552 ( 6.06%) 218911906 ( 1.78%) 212.42
realaud 3519 ( 0.02%) 1242527 ( 0.01%) 353.09
halflif 140 ( 0.00%) 24865 ( 0.00%) 177.61
starcra 41 ( 0.00%) 11371 ( 0.00%) 277.34
everque 72 ( 0.00%) 14011 ( 0.00%) 194.60
unreal 577 ( 0.00%) 272445 ( 0.00%) 472.18
quake 19 ( 0.00%) 2894 ( 0.00%) 152.32
cuseeme 10 ( 0.00%) 2498 ( 0.00%) 249.80
other 1249395 ( 7.35%) 616404369 ( 5.00%) 493.36
icmp 784998 ( 4.62%) 111835756 ( 0.91%) 142.47
ipip 310 ( 0.00%) 37992 ( 0.00%) 122.55
ipsec 110 ( 0.00%) 17380 ( 0.00%) 158.00
ip6 66062 ( 0.39%) 40195064 ( 0.33%) 608.44
other 31111 ( 0.18%) 7927383 ( 0.06%) 254.81
frag 58378 ( 0.34%) 60376327 ( 0.49%) 1034.23
ip6 31583 ( 0.19%) 7775039 ( 0.06%) 246.18
tcp6 10213 ( 0.06%) 3888145 ( 0.03%) 380.71
http(s) 2247 ( 0.01%) 1409258 ( 0.01%) 627.17
http(c) 5416 ( 0.03%) 937481 ( 0.01%) 173.09
smtp 138 ( 0.00%) 71832 ( 0.00%) 520.52
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 391 ( 0.00%) 35504 ( 0.00%) 90.80
other 2019 ( 0.01%) 1433898 ( 0.01%) 710.20
udp6 17417 ( 0.10%) 2979318 ( 0.02%) 171.06
dns 14855 ( 0.09%) 2238771 ( 0.02%) 150.71
starcra 1 ( 0.00%) 116 ( 0.00%) 116.00
everque 1 ( 0.00%) 145 ( 0.00%) 145.00
quake 1 ( 0.00%) 118 ( 0.00%) 118.00
other 2559 ( 0.02%) 740168 ( 0.01%) 289.24
icmp6 3493 ( 0.02%) 491960 ( 0.00%) 140.84
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 430 ( 0.00%) 411536 ( 0.00%) 957.06
tcpdump file: 200903301930.dump.gz (422.26 MB)