Traffic Trace Info
DumpFile: 200903310300.dump
FileSize: 1053.38MB
Id: 200903310300
StartTime: Tue Mar 31 03:00:01 2009
EndTime: Tue Mar 31 03:15:01 2009
TotalTime: 900.06 seconds
TotalCapSize: 823.63MB CapLen: 96 bytes
# of packets: 15056362 (9980.94MB)
AvgRate: 99.06Mbps stddev:17.96M
IP flow (unique src/dst pair) Information
# of flows: 881934 (avg. 17.07 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.5% 2.6% 1.6% 1.6% 1.3% 1.2% 1.0% 0.9% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 577115
Top 10 bandwidth usage (bytes/total in %):
15.5% 9.8% 9.0% 6.5% 6.5% 6.2% 5.3% 3.6% 3.1% 3.0%
# of IPv6 addresses: 2016
Top 10 bandwidth usage (bytes/total in %):
39.5% 28.4% 18.5% 8.4% 6.6% 5.9% 4.0% 2.8% 2.5% 2.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903310300.pktlen.png)
detailed numbers
[ 32- 63]: 2973131
[ 64- 127]: 3798815
[ 128- 255]: 965920
[ 256- 511]: 374348
[ 512- 1023]: 471946
[ 1024- 2047]: 6472202
Protocol Breakdown
![[protocol breakdown chart]](200903310300.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 15056362 (100.00%) 10465775081 (100.00%) 695.11
ip 15030082 ( 99.83%) 10459736132 ( 99.94%) 695.92
tcp 12068224 ( 80.15%) 9498096559 ( 90.75%) 787.03
http(s) 4797388 ( 31.86%) 6576718031 ( 62.84%) 1370.90
http(c) 2385038 ( 15.84%) 291445987 ( 2.78%) 122.20
squid 371378 ( 2.47%) 140118768 ( 1.34%) 377.29
smtp 318639 ( 2.12%) 74488880 ( 0.71%) 233.77
nntp 2 ( 0.00%) 122 ( 0.00%) 61.00
ftp 194278 ( 1.29%) 206442071 ( 1.97%) 1062.61
pop3 4618 ( 0.03%) 2423691 ( 0.02%) 524.84
imap 1564 ( 0.01%) 718849 ( 0.01%) 459.62
telnet 3877 ( 0.03%) 257573 ( 0.00%) 66.44
ssh 2087180 ( 13.86%) 924120825 ( 8.83%) 442.76
dns 15857 ( 0.11%) 3007234 ( 0.03%) 189.65
bgp 131 ( 0.00%) 49614 ( 0.00%) 378.73
napster 85 ( 0.00%) 5722 ( 0.00%) 67.32
realaud 18 ( 0.00%) 1218 ( 0.00%) 67.67
rtsp 98 ( 0.00%) 27929 ( 0.00%) 284.99
icecast 11170 ( 0.07%) 737692 ( 0.01%) 66.04
hotline 20 ( 0.00%) 1851 ( 0.00%) 92.55
other 1876866 ( 12.47%) 1277529468 ( 12.21%) 680.67
udp 2127780 ( 14.13%) 844812392 ( 8.07%) 397.04
dns 1232928 ( 8.19%) 240410553 ( 2.30%) 194.99
realaud 6473 ( 0.04%) 2997199 ( 0.03%) 463.03
halflif 190 ( 0.00%) 31429 ( 0.00%) 165.42
starcra 29 ( 0.00%) 5353 ( 0.00%) 184.59
everque 48 ( 0.00%) 9858 ( 0.00%) 205.38
unreal 565 ( 0.00%) 258042 ( 0.00%) 456.71
quake 31 ( 0.00%) 2892 ( 0.00%) 93.29
cuseeme 10 ( 0.00%) 948 ( 0.00%) 94.80
other 887372 ( 5.89%) 600989134 ( 5.74%) 677.27
icmp 805342 ( 5.35%) 109981559 ( 1.05%) 136.57
ipip 301 ( 0.00%) 35846 ( 0.00%) 119.09
ipsec 104 ( 0.00%) 16432 ( 0.00%) 158.00
ip6 23074 ( 0.15%) 5827958 ( 0.06%) 252.58
other 5257 ( 0.03%) 965386 ( 0.01%) 183.64
frag 51738 ( 0.34%) 56215564 ( 0.54%) 1086.54
ip6 26280 ( 0.17%) 6038949 ( 0.06%) 229.79
tcp6 10726 ( 0.07%) 3474756 ( 0.03%) 323.96
http(s) 384 ( 0.00%) 190236 ( 0.00%) 495.41
http(c) 6965 ( 0.05%) 609596 ( 0.01%) 87.52
smtp 259 ( 0.00%) 125607 ( 0.00%) 484.97
ssh 3 ( 0.00%) 246 ( 0.00%) 82.00
bgp 344 ( 0.00%) 29583 ( 0.00%) 86.00
other 2771 ( 0.02%) 2519488 ( 0.02%) 909.23
udp6 11616 ( 0.08%) 1899687 ( 0.02%) 163.54
dns 9911 ( 0.07%) 1599183 ( 0.02%) 161.35
everque 1 ( 0.00%) 123 ( 0.00%) 123.00
other 1704 ( 0.01%) 300381 ( 0.00%) 176.28
icmp6 3745 ( 0.02%) 523034 ( 0.00%) 139.66
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 163 ( 0.00%) 137392 ( 0.00%) 842.90
tcpdump file: 200903310300.dump.gz (385.59 MB)