Traffic Trace Info
DumpFile: 200903310530.dump
FileSize: 805.13MB
Id: 200903310530
StartTime: Tue Mar 31 05:30:01 2009
EndTime: Tue Mar 31 05:45:00 2009
TotalTime: 899.71 seconds
TotalCapSize: 626.72MB CapLen: 96 bytes
# of packets: 11691114 (7986.24MB)
AvgRate: 74.48Mbps stddev:10.40M
IP flow (unique src/dst pair) Information
# of flows: 656074 (avg. 17.82 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.9% 2.7% 2.6% 2.5% 2.0% 1.8% 1.5% 1.1% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 423358
Top 10 bandwidth usage (bytes/total in %):
13.8% 12.3% 11.7% 7.2% 4.1% 4.0% 3.9% 3.0% 2.8% 2.8%
# of IPv6 addresses: 1693
Top 10 bandwidth usage (bytes/total in %):
25.7% 25.7% 11.2% 8.4% 7.2% 7.2% 6.5% 6.5% 5.4% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903310530.pktlen.png)
detailed numbers
[ 32- 63]: 2174828
[ 64- 127]: 2780618
[ 128- 255]: 807245
[ 256- 511]: 354948
[ 512- 1023]: 321333
[ 1024- 2047]: 5252142
Protocol Breakdown
![[protocol breakdown chart]](200903310530.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 11691114 (100.00%) 8374180059 (100.00%) 716.29
ip 11663612 ( 99.76%) 8369219460 ( 99.94%) 717.55
tcp 8204336 ( 70.18%) 7278447112 ( 86.92%) 887.15
http(s) 3907288 ( 33.42%) 5329421443 ( 63.64%) 1363.97
http(c) 1911025 ( 16.35%) 458443766 ( 5.47%) 239.89
squid 243290 ( 2.08%) 102361172 ( 1.22%) 420.74
smtp 289250 ( 2.47%) 57518494 ( 0.69%) 198.85
ftp 146022 ( 1.25%) 140939475 ( 1.68%) 965.19
pop3 4069 ( 0.03%) 1638412 ( 0.02%) 402.66
imap 966 ( 0.01%) 94337 ( 0.00%) 97.66
telnet 3360 ( 0.03%) 220822 ( 0.00%) 65.72
ssh 55050 ( 0.47%) 9829776 ( 0.12%) 178.56
dns 17567 ( 0.15%) 5040745 ( 0.06%) 286.94
bgp 458 ( 0.00%) 302386 ( 0.00%) 660.23
napster 76 ( 0.00%) 4560 ( 0.00%) 60.00
realaud 23 ( 0.00%) 4058 ( 0.00%) 176.43
rtsp 314 ( 0.00%) 107403 ( 0.00%) 342.05
icecast 107 ( 0.00%) 6863 ( 0.00%) 64.14
other 1625346 ( 13.90%) 1172505900 ( 14.00%) 721.39
udp 2712483 ( 23.20%) 973190926 ( 11.62%) 358.78
dns 1572054 ( 13.45%) 271575690 ( 3.24%) 172.75
realaud 1562 ( 0.01%) 95878 ( 0.00%) 61.38
halflif 101 ( 0.00%) 21680 ( 0.00%) 214.65
starcra 20 ( 0.00%) 4007 ( 0.00%) 200.35
everque 49 ( 0.00%) 10742 ( 0.00%) 219.22
unreal 293 ( 0.00%) 141237 ( 0.00%) 482.04
quake 27 ( 0.00%) 2404 ( 0.00%) 89.04
cuseeme 7 ( 0.00%) 1167 ( 0.00%) 166.71
other 1138225 ( 9.74%) 701216368 ( 8.37%) 616.06
icmp 705598 ( 6.04%) 103094808 ( 1.23%) 146.11
ipip 326 ( 0.00%) 41480 ( 0.00%) 127.24
ipsec 108 ( 0.00%) 17064 ( 0.00%) 158.00
ip6 30437 ( 0.26%) 12883124 ( 0.15%) 423.27
other 10324 ( 0.09%) 1544946 ( 0.02%) 149.65
frag 48744 ( 0.42%) 53467261 ( 0.64%) 1096.90
ip6 27502 ( 0.24%) 4960599 ( 0.06%) 180.37
tcp6 13204 ( 0.11%) 2508947 ( 0.03%) 190.01
http(s) 165 ( 0.00%) 19044 ( 0.00%) 115.42
http(c) 2748 ( 0.02%) 250605 ( 0.00%) 91.20
smtp 281 ( 0.00%) 145118 ( 0.00%) 516.43
ftp 1960 ( 0.02%) 205555 ( 0.00%) 104.88
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
dns 2 ( 0.00%) 158 ( 0.00%) 79.00
bgp 359 ( 0.00%) 29879 ( 0.00%) 83.23
other 7687 ( 0.07%) 1858416 ( 0.02%) 241.76
udp6 10006 ( 0.09%) 1573138 ( 0.02%) 157.22
dns 8733 ( 0.07%) 1373288 ( 0.02%) 157.25
quake 1 ( 0.00%) 105 ( 0.00%) 105.00
cuseeme 1 ( 0.00%) 102 ( 0.00%) 102.00
other 1271 ( 0.01%) 199643 ( 0.00%) 157.08
icmp6 3863 ( 0.03%) 509922 ( 0.01%) 132.00
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 398 ( 0.00%) 364376 ( 0.00%) 915.52
tcpdump file: 200903310530.dump.gz (286.77 MB)