Traffic Trace Info
DumpFile: 200903310645.dump
FileSize: 680.66MB
Id: 200903310645
StartTime: Tue Mar 31 06:45:00 2009
EndTime: Tue Mar 31 07:00:00 2009
TotalTime: 900.04 seconds
TotalCapSize: 531.23MB CapLen: 96 bytes
# of packets: 9792113 (6846.59MB)
AvgRate: 63.82Mbps stddev:13.12M
IP flow (unique src/dst pair) Information
# of flows: 535509 (avg. 18.29 pkts/flow)
Top 10 big flow size (bytes/total in %):
9.9% 3.5% 3.2% 2.1% 1.5% 1.4% 1.3% 1.2% 1.0% 1.0%
IP address Information
# of IPv4 addresses: 339082
Top 10 bandwidth usage (bytes/total in %):
11.1% 11.0% 10.6% 10.2% 6.5% 5.4% 4.2% 4.0% 3.5% 3.5%
# of IPv6 addresses: 1624
Top 10 bandwidth usage (bytes/total in %):
27.3% 26.9% 13.6% 6.9% 6.5% 6.5% 6.5% 5.5% 3.7% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903310645.pktlen.png)
detailed numbers
[ 32- 63]: 2022731
[ 64- 127]: 2142794
[ 128- 255]: 548541
[ 256- 511]: 335642
[ 512- 1023]: 227077
[ 1024- 2047]: 4515328
Protocol Breakdown
![[protocol breakdown chart]](200903310645.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 9792113 (100.00%) 7179173477 (100.00%) 733.16
ip 9766156 ( 99.73%) 7174115075 ( 99.93%) 734.59
tcp 7699873 ( 78.63%) 6494426718 ( 90.46%) 843.45
http(s) 3648992 ( 37.26%) 4889662637 ( 68.11%) 1340.00
http(c) 1674549 ( 17.10%) 128871576 ( 1.80%) 76.96
squid 309174 ( 3.16%) 135245796 ( 1.88%) 437.44
smtp 254870 ( 2.60%) 39384175 ( 0.55%) 154.53
ftp 174684 ( 1.78%) 183606535 ( 2.56%) 1051.08
pop3 4133 ( 0.04%) 1865041 ( 0.03%) 451.26
imap 846 ( 0.01%) 80078 ( 0.00%) 94.65
telnet 3306 ( 0.03%) 249349 ( 0.00%) 75.42
ssh 92809 ( 0.95%) 15030111 ( 0.21%) 161.95
dns 13703 ( 0.14%) 1455027 ( 0.02%) 106.18
bgp 151 ( 0.00%) 54110 ( 0.00%) 358.34
napster 243 ( 0.00%) 15027 ( 0.00%) 61.84
realaud 18 ( 0.00%) 1226 ( 0.00%) 68.11
rtsp 69 ( 0.00%) 28635 ( 0.00%) 415.00
icecast 101 ( 0.00%) 6786 ( 0.00%) 67.19
hotline 156 ( 0.00%) 9666 ( 0.00%) 61.96
other 1522054 ( 15.54%) 1098860043 ( 15.31%) 721.96
udp 1540247 ( 15.73%) 587264942 ( 8.18%) 381.28
dns 945925 ( 9.66%) 210340509 ( 2.93%) 222.36
realaud 908 ( 0.01%) 54899 ( 0.00%) 60.46
halflif 125 ( 0.00%) 22392 ( 0.00%) 179.14
starcra 14 ( 0.00%) 2638 ( 0.00%) 188.43
everque 46 ( 0.00%) 10506 ( 0.00%) 228.39
unreal 9 ( 0.00%) 1283 ( 0.00%) 142.56
quake 18 ( 0.00%) 1449 ( 0.00%) 80.50
cuseeme 2 ( 0.00%) 144 ( 0.00%) 72.00
other 593078 ( 6.06%) 376719310 ( 5.25%) 635.19
icmp 488471 ( 4.99%) 82100175 ( 1.14%) 168.08
ipip 330 ( 0.00%) 39571 ( 0.00%) 119.91
ipsec 116 ( 0.00%) 18288 ( 0.00%) 157.66
ip6 27147 ( 0.28%) 8915864 ( 0.12%) 328.43
other 9972 ( 0.10%) 1349517 ( 0.02%) 135.33
frag 45882 ( 0.47%) 50329098 ( 0.70%) 1096.92
ip6 25957 ( 0.27%) 5058402 ( 0.07%) 194.88
tcp6 9387 ( 0.10%) 2530955 ( 0.04%) 269.62
http(s) 284 ( 0.00%) 95117 ( 0.00%) 334.92
http(c) 2516 ( 0.03%) 227193 ( 0.00%) 90.30
smtp 741 ( 0.01%) 362856 ( 0.01%) 489.68
ftp 1792 ( 0.02%) 173077 ( 0.00%) 96.58
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 371 ( 0.00%) 31965 ( 0.00%) 86.16
other 3681 ( 0.04%) 1640575 ( 0.02%) 445.69
udp6 12016 ( 0.12%) 1764867 ( 0.02%) 146.88
dns 10814 ( 0.11%) 1572365 ( 0.02%) 145.40
starcra 1 ( 0.00%) 145 ( 0.00%) 145.00
everque 1 ( 0.00%) 103 ( 0.00%) 103.00
unreal 1 ( 0.00%) 106 ( 0.00%) 106.00
other 1199 ( 0.01%) 192148 ( 0.00%) 160.26
icmp6 4333 ( 0.04%) 598410 ( 0.01%) 138.11
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 191 ( 0.00%) 160090 ( 0.00%) 838.17
tcpdump file: 200903310645.dump.gz (236.96 MB)