Traffic Trace Info
DumpFile: 200903310900.dump
FileSize: 725.20MB
Id: 200903310900
StartTime: Tue Mar 31 09:00:00 2009
EndTime: Tue Mar 31 09:15:00 2009
TotalTime: 899.94 seconds
TotalCapSize: 567.09MB CapLen: 96 bytes
# of packets: 10361141 (7084.51MB)
AvgRate: 66.03Mbps stddev:12.40M
IP flow (unique src/dst pair) Information
# of flows: 689781 (avg. 15.02 pkts/flow)
Top 10 big flow size (bytes/total in %):
11.2% 3.1% 2.2% 2.1% 1.9% 1.2% 1.1% 1.1% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 441251
Top 10 bandwidth usage (bytes/total in %):
11.7% 11.4% 11.2% 8.6% 7.9% 6.3% 3.9% 3.4% 3.2% 3.1%
# of IPv6 addresses: 3179
Top 10 bandwidth usage (bytes/total in %):
32.8% 21.0% 19.7% 13.9% 9.8% 7.6% 4.8% 4.8% 2.8% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903310900.pktlen.png)
detailed numbers
[ 32- 63]: 2211190
[ 64- 127]: 2370128
[ 128- 255]: 508039
[ 256- 511]: 340334
[ 512- 1023]: 380979
[ 1024- 2047]: 4550471
Protocol Breakdown
![[protocol breakdown chart]](200903310900.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 10361141 (100.00%) 7428650497 (100.00%) 716.97
ip 10331162 ( 99.71%) 7419460029 ( 99.88%) 718.16
tcp 8252548 ( 79.65%) 6821227584 ( 91.82%) 826.56
http(s) 3291446 ( 31.77%) 4354939105 ( 58.62%) 1323.11
http(c) 1863992 ( 17.99%) 197175074 ( 2.65%) 105.78
squid 216206 ( 2.09%) 63837610 ( 0.86%) 295.26
smtp 302012 ( 2.91%) 90189418 ( 1.21%) 298.63
ftp 87434 ( 0.84%) 60067985 ( 0.81%) 687.01
pop3 7899 ( 0.08%) 1894328 ( 0.03%) 239.82
imap 3158 ( 0.03%) 1669938 ( 0.02%) 528.80
telnet 1040 ( 0.01%) 89880 ( 0.00%) 86.42
ssh 666254 ( 6.43%) 880113019 ( 11.85%) 1320.99
dns 11850 ( 0.11%) 1315926 ( 0.02%) 111.05
bgp 153 ( 0.00%) 48261 ( 0.00%) 315.43
napster 18 ( 0.00%) 1758 ( 0.00%) 97.67
realaud 28 ( 0.00%) 1854 ( 0.00%) 66.21
rtsp 44 ( 0.00%) 9343 ( 0.00%) 212.34
icecast 164 ( 0.00%) 10861 ( 0.00%) 66.23
other 1800834 ( 17.38%) 1169862234 ( 15.75%) 649.62
udp 1536919 ( 14.83%) 547067437 ( 7.36%) 355.95
dns 902250 ( 8.71%) 229207768 ( 3.09%) 254.04
realaud 10 ( 0.00%) 1194 ( 0.00%) 119.40
halflif 147 ( 0.00%) 27978 ( 0.00%) 190.33
starcra 22 ( 0.00%) 3952 ( 0.00%) 179.64
everque 58 ( 0.00%) 11573 ( 0.00%) 199.53
unreal 10 ( 0.00%) 1241 ( 0.00%) 124.10
quake 17 ( 0.00%) 1345 ( 0.00%) 79.12
cuseeme 3 ( 0.00%) 551 ( 0.00%) 183.67
other 634273 ( 6.12%) 317695443 ( 4.28%) 500.88
icmp 497846 ( 4.80%) 42660570 ( 0.57%) 85.69
ipip 326 ( 0.00%) 39447 ( 0.00%) 121.00
ipsec 108 ( 0.00%) 17064 ( 0.00%) 158.00
ip6 33267 ( 0.32%) 7022103 ( 0.09%) 211.08
other 10148 ( 0.10%) 1425824 ( 0.02%) 140.50
frag 42874 ( 0.41%) 46926827 ( 0.63%) 1094.53
ip6 29979 ( 0.29%) 9190468 ( 0.12%) 306.56
tcp6 7275 ( 0.07%) 4020833 ( 0.05%) 552.69
http(s) 206 ( 0.00%) 23825 ( 0.00%) 115.66
http(c) 2751 ( 0.03%) 251284 ( 0.00%) 91.34
smtp 360 ( 0.00%) 144137 ( 0.00%) 400.38
imap 478 ( 0.00%) 441241 ( 0.01%) 923.10
ssh 3 ( 0.00%) 246 ( 0.00%) 82.00
bgp 365 ( 0.00%) 30515 ( 0.00%) 83.60
other 3112 ( 0.03%) 3129585 ( 0.04%) 1005.65
udp6 18117 ( 0.17%) 3963001 ( 0.05%) 218.74
dns 12435 ( 0.12%) 1832845 ( 0.02%) 147.39
halflif 1 ( 0.00%) 105 ( 0.00%) 105.00
everque 1 ( 0.00%) 576 ( 0.00%) 576.00
quake 1 ( 0.00%) 109 ( 0.00%) 109.00
other 5679 ( 0.05%) 2129366 ( 0.03%) 374.95
icmp6 3826 ( 0.04%) 533969 ( 0.01%) 139.56
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 731 ( 0.01%) 668585 ( 0.01%) 914.62
tcpdump file: 200903310900.dump.gz (249.45 MB)