Traffic Trace Info
DumpFile: 200903310730.dump
FileSize: 701.72MB
Id: 200903310730
StartTime: Tue Mar 31 07:30:00 2009
EndTime: Tue Mar 31 07:45:00 2009
TotalTime: 899.88 seconds
TotalCapSize: 548.04MB CapLen: 96 bytes
# of packets: 10069657 (6869.18MB)
AvgRate: 64.04Mbps stddev:10.43M
IP flow (unique src/dst pair) Information
# of flows: 736409 (avg. 13.67 pkts/flow)
Top 10 big flow size (bytes/total in %):
12.0% 4.3% 3.1% 2.3% 2.1% 1.8% 1.8% 1.6% 1.2% 1.2%
IP address Information
# of IPv4 addresses: 505282
Top 10 bandwidth usage (bytes/total in %):
12.3% 12.2% 11.2% 11.2% 7.1% 5.9% 4.5% 4.3% 4.3% 3.1%
# of IPv6 addresses: 1914
Top 10 bandwidth usage (bytes/total in %):
27.1% 27.1% 15.7% 10.3% 5.1% 3.9% 3.5% 3.2% 3.1% 3.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903310730.pktlen.png)
detailed numbers
[ 32- 63]: 2461194
[ 64- 127]: 2099992
[ 128- 255]: 419363
[ 256- 511]: 336043
[ 512- 1023]: 186512
[ 1024- 2047]: 4566553
Protocol Breakdown
![[protocol breakdown chart]](200903310730.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 10069657 (100.00%) 7202854706 (100.00%) 715.30
ip 10048168 ( 99.79%) 7198121613 ( 99.93%) 716.36
tcp 7892464 ( 78.38%) 6387146511 ( 88.68%) 809.27
http(s) 3727674 ( 37.02%) 4998881557 ( 69.40%) 1341.02
http(c) 1703923 ( 16.92%) 139828792 ( 1.94%) 82.06
squid 342340 ( 3.40%) 130403638 ( 1.81%) 380.92
smtp 460722 ( 4.58%) 81726883 ( 1.13%) 177.39
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 154594 ( 1.54%) 166242840 ( 2.31%) 1075.35
pop3 4184 ( 0.04%) 1563032 ( 0.02%) 373.57
imap 1589 ( 0.02%) 586385 ( 0.01%) 369.03
telnet 825 ( 0.01%) 59051 ( 0.00%) 71.58
ssh 43999 ( 0.44%) 8956346 ( 0.12%) 203.56
dns 14162 ( 0.14%) 3485753 ( 0.05%) 246.13
bgp 244 ( 0.00%) 125460 ( 0.00%) 514.18
napster 109 ( 0.00%) 7219 ( 0.00%) 66.23
realaud 24 ( 0.00%) 2788 ( 0.00%) 116.17
rtsp 74 ( 0.00%) 27888 ( 0.00%) 376.86
icecast 119 ( 0.00%) 8099 ( 0.00%) 68.06
hotline 18 ( 0.00%) 1364 ( 0.00%) 75.78
other 1437809 ( 14.28%) 855236116 ( 11.87%) 594.82
udp 1449441 ( 14.39%) 590353599 ( 8.20%) 407.30
dns 805819 ( 8.00%) 175497943 ( 2.44%) 217.79
realaud 918 ( 0.01%) 55704 ( 0.00%) 60.68
halflif 65 ( 0.00%) 10308 ( 0.00%) 158.58
starcra 15 ( 0.00%) 2201 ( 0.00%) 146.73
everque 53 ( 0.00%) 11121 ( 0.00%) 209.83
unreal 4 ( 0.00%) 647 ( 0.00%) 161.75
quake 18 ( 0.00%) 1748 ( 0.00%) 97.11
cuseeme 2 ( 0.00%) 170 ( 0.00%) 85.00
other 642455 ( 6.38%) 414689543 ( 5.76%) 645.48
icmp 585558 ( 5.82%) 84721870 ( 1.18%) 144.69
ipip 327 ( 0.00%) 40263 ( 0.00%) 123.13
ipsec 108 ( 0.00%) 17064 ( 0.00%) 158.00
ip6 110229 ( 1.09%) 134443279 ( 1.87%) 1219.67
other 10041 ( 0.10%) 1399027 ( 0.02%) 139.33
frag 43067 ( 0.43%) 47264795 ( 0.66%) 1097.47
ip6 21489 ( 0.21%) 4733093 ( 0.07%) 220.26
tcp6 5916 ( 0.06%) 1939726 ( 0.03%) 327.88
http(s) 214 ( 0.00%) 27163 ( 0.00%) 126.93
http(c) 2995 ( 0.03%) 307542 ( 0.00%) 102.69
smtp 341 ( 0.00%) 132507 ( 0.00%) 388.58
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 385 ( 0.00%) 34046 ( 0.00%) 88.43
other 1979 ( 0.02%) 1438296 ( 0.02%) 726.78
udp6 11680 ( 0.12%) 2003714 ( 0.03%) 171.55
dns 10041 ( 0.10%) 1562186 ( 0.02%) 155.58
realaud 1 ( 0.00%) 117 ( 0.00%) 117.00
starcra 1 ( 0.00%) 110 ( 0.00%) 110.00
everque 2 ( 0.00%) 721 ( 0.00%) 360.50
quake 1 ( 0.00%) 104 ( 0.00%) 104.00
other 1634 ( 0.02%) 440476 ( 0.01%) 269.57
icmp6 3540 ( 0.04%) 486840 ( 0.01%) 137.53
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 323 ( 0.00%) 298733 ( 0.00%) 924.87
tcpdump file: 200903310730.dump.gz (241.31 MB)