Traffic Trace Info
DumpFile: 200903310015.dump
FileSize: 1262.32MB
Id: 200903310015
StartTime: Tue Mar 31 00:15:01 2009
EndTime: Tue Mar 31 00:30:00 2009
TotalTime: 899.22 seconds
TotalCapSize: 985.09MB CapLen: 96 bytes
# of packets: 18164219 (13664.80MB)
AvgRate: 127.48Mbps stddev:19.69M
IP flow (unique src/dst pair) Information
# of flows: 823045 (avg. 22.07 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.5% 5.3% 1.8% 1.4% 1.2% 1.0% 1.0% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 518611
Top 10 bandwidth usage (bytes/total in %):
14.8% 11.6% 10.9% 5.5% 5.5% 5.3% 5.1% 3.9% 3.7% 2.5%
# of IPv6 addresses: 2736
Top 10 bandwidth usage (bytes/total in %):
67.6% 67.6% 8.1% 6.4% 6.4% 5.3% 3.4% 3.4% 2.8% 2.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903310015.pktlen.png)
detailed numbers
[ 32- 63]: 3940049
[ 64- 127]: 3447361
[ 128- 255]: 895802
[ 256- 511]: 429857
[ 512- 1023]: 362185
[ 1024- 2047]: 9088965
Protocol Breakdown
![[protocol breakdown chart]](200903310015.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 18164219 (100.00%) 14328583379 (100.00%) 788.84
ip 18070680 ( 99.49%) 14290649035 ( 99.74%) 790.82
tcp 15144642 ( 83.38%) 13527975458 ( 94.41%) 893.25
http(s) 7355919 ( 40.50%) 10215039748 ( 71.29%) 1388.68
http(c) 3711160 ( 20.43%) 537631866 ( 3.75%) 144.87
squid 472551 ( 2.60%) 247608345 ( 1.73%) 523.98
smtp 407639 ( 2.24%) 123899148 ( 0.86%) 303.94
nntp 3 ( 0.00%) 180 ( 0.00%) 60.00
ftp 254565 ( 1.40%) 263644363 ( 1.84%) 1035.67
pop3 7303 ( 0.04%) 3081275 ( 0.02%) 421.92
imap 4383 ( 0.02%) 1045305 ( 0.01%) 238.49
telnet 10049 ( 0.06%) 7071901 ( 0.05%) 703.74
ssh 129826 ( 0.71%) 84362160 ( 0.59%) 649.81
dns 27032 ( 0.15%) 12787442 ( 0.09%) 473.05
bgp 149 ( 0.00%) 54787 ( 0.00%) 367.70
napster 116 ( 0.00%) 7464 ( 0.00%) 64.34
realaud 28 ( 0.00%) 4418 ( 0.00%) 157.79
rtsp 1455 ( 0.01%) 101727 ( 0.00%) 69.92
icecast 12300 ( 0.07%) 826772 ( 0.01%) 67.22
hotline 23 ( 0.00%) 11554 ( 0.00%) 502.35
other 2750073 ( 15.14%) 2030790939 ( 14.17%) 738.45
udp 2091676 ( 11.52%) 596280992 ( 4.16%) 285.07
dns 1211111 ( 6.67%) 265878295 ( 1.86%) 219.53
realaud 918 ( 0.01%) 55711 ( 0.00%) 60.69
halflif 17267 ( 0.10%) 3747020 ( 0.03%) 217.00
starcra 35 ( 0.00%) 5397 ( 0.00%) 154.20
everque 80 ( 0.00%) 12978 ( 0.00%) 162.22
unreal 480 ( 0.00%) 232639 ( 0.00%) 484.66
quake 19 ( 0.00%) 1939 ( 0.00%) 102.05
cuseeme 3 ( 0.00%) 238 ( 0.00%) 79.33
other 861606 ( 4.74%) 326229922 ( 2.28%) 378.63
icmp 751169 ( 4.14%) 113504195 ( 0.79%) 151.10
ipip 306 ( 0.00%) 36262 ( 0.00%) 118.50
ipsec 116 ( 0.00%) 18256 ( 0.00%) 157.38
ip6 74312 ( 0.41%) 50966453 ( 0.36%) 685.84
other 8459 ( 0.05%) 1867419 ( 0.01%) 220.76
frag 67875 ( 0.37%) 73830095 ( 0.52%) 1087.74
ip6 93539 ( 0.51%) 37934344 ( 0.26%) 405.55
tcp6 71925 ( 0.40%) 34020850 ( 0.24%) 473.00
http(s) 3407 ( 0.02%) 2025695 ( 0.01%) 594.57
http(c) 48393 ( 0.27%) 4722594 ( 0.03%) 97.59
smtp 331 ( 0.00%) 160844 ( 0.00%) 485.93
ftp 67 ( 0.00%) 12219 ( 0.00%) 182.37
dns 4 ( 0.00%) 458 ( 0.00%) 114.50
bgp 387 ( 0.00%) 41360 ( 0.00%) 106.87
other 19336 ( 0.11%) 27057680 ( 0.19%) 1399.34
udp6 16838 ( 0.09%) 2650014 ( 0.02%) 157.38
dns 14034 ( 0.08%) 2099817 ( 0.01%) 149.62
halflif 1 ( 0.00%) 100 ( 0.00%) 100.00
everque 1 ( 0.00%) 106 ( 0.00%) 106.00
cuseeme 1 ( 0.00%) 111 ( 0.00%) 111.00
other 2801 ( 0.02%) 549880 ( 0.00%) 196.32
icmp6 3956 ( 0.02%) 523380 ( 0.00%) 132.30
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 790 ( 0.00%) 736020 ( 0.01%) 931.67
tcpdump file: 200903310015.dump.gz (444.05 MB)