Traffic Trace Info
DumpFile: 200903310930.dump
FileSize: 896.87MB
Id: 200903310930
StartTime: Tue Mar 31 09:30:00 2009
EndTime: Tue Mar 31 09:45:00 2009
TotalTime: 899.75 seconds
TotalCapSize: 700.02MB CapLen: 96 bytes
# of packets: 12899312 (9057.07MB)
AvgRate: 84.45Mbps stddev:12.72M
IP flow (unique src/dst pair) Information
# of flows: 635737 (avg. 20.29 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.7% 2.6% 2.6% 2.4% 2.3% 2.3% 1.7% 1.6% 1.5% 1.4%
IP address Information
# of IPv4 addresses: 397614
Top 10 bandwidth usage (bytes/total in %):
10.3% 10.0% 7.3% 7.0% 5.3% 4.1% 4.0% 3.2% 2.8% 2.7%
# of IPv6 addresses: 2697
Top 10 bandwidth usage (bytes/total in %):
22.7% 22.7% 15.4% 11.3% 10.5% 4.2% 4.0% 3.9% 3.6% 3.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903310930.pktlen.png)
detailed numbers
[ 32- 63]: 3066639
[ 64- 127]: 2596967
[ 128- 255]: 570024
[ 256- 511]: 375072
[ 512- 1023]: 389451
[ 1024- 2047]: 5901159
Protocol Breakdown
![[protocol breakdown chart]](200903310930.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 12899312 (100.00%) 9497024821 (100.00%) 736.24
ip 12873226 ( 99.80%) 9491411859 ( 99.94%) 737.30
tcp 10798139 ( 83.71%) 8850843573 ( 93.20%) 819.66
http(s) 4717647 ( 36.57%) 6326380887 ( 66.61%) 1341.00
http(c) 2707514 ( 20.99%) 401840199 ( 4.23%) 148.42
squid 241881 ( 1.88%) 53668036 ( 0.57%) 221.88
smtp 292429 ( 2.27%) 109997841 ( 1.16%) 376.15
ftp 92730 ( 0.72%) 67950085 ( 0.72%) 732.77
pop3 6592 ( 0.05%) 2204768 ( 0.02%) 334.46
imap 2226 ( 0.02%) 747077 ( 0.01%) 335.61
telnet 1230 ( 0.01%) 121547 ( 0.00%) 98.82
ssh 319347 ( 2.48%) 282947543 ( 2.98%) 886.02
dns 14775 ( 0.11%) 4782753 ( 0.05%) 323.71
bgp 143 ( 0.00%) 54128 ( 0.00%) 378.52
napster 82 ( 0.00%) 8462 ( 0.00%) 103.20
realaud 8 ( 0.00%) 592 ( 0.00%) 74.00
rtsp 65050 ( 0.50%) 94848348 ( 1.00%) 1458.08
icecast 136 ( 0.00%) 9388 ( 0.00%) 69.03
hotline 5 ( 0.00%) 675 ( 0.00%) 135.00
other 2336334 ( 18.11%) 1505280644 ( 15.85%) 644.29
udp 1647612 ( 12.77%) 598345492 ( 6.30%) 363.16
dns 920665 ( 7.14%) 230335536 ( 2.43%) 250.18
realaud 223 ( 0.00%) 14870 ( 0.00%) 66.68
halflif 171 ( 0.00%) 30612 ( 0.00%) 179.02
starcra 12 ( 0.00%) 1321 ( 0.00%) 110.08
everque 58 ( 0.00%) 11686 ( 0.00%) 201.48
unreal 15 ( 0.00%) 3406 ( 0.00%) 227.07
quake 14 ( 0.00%) 1194 ( 0.00%) 85.29
cuseeme 2 ( 0.00%) 208 ( 0.00%) 104.00
other 724430 ( 5.62%) 367737441 ( 3.87%) 507.62
icmp 386527 ( 3.00%) 34507075 ( 0.36%) 89.27
ipip 313 ( 0.00%) 37134 ( 0.00%) 118.64
ipsec 112 ( 0.00%) 17624 ( 0.00%) 157.36
ip6 29412 ( 0.23%) 6202705 ( 0.07%) 210.89
other 11111 ( 0.09%) 1458256 ( 0.02%) 131.24
frag 46388 ( 0.36%) 48236066 ( 0.51%) 1039.84
ip6 26086 ( 0.20%) 5612962 ( 0.06%) 215.17
tcp6 6557 ( 0.05%) 1846131 ( 0.02%) 281.55
http(s) 225 ( 0.00%) 25893 ( 0.00%) 115.08
http(c) 3993 ( 0.03%) 344345 ( 0.00%) 86.24
smtp 154 ( 0.00%) 62427 ( 0.00%) 405.37
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 364 ( 0.00%) 30554 ( 0.00%) 83.94
other 1819 ( 0.01%) 1382740 ( 0.01%) 760.16
udp6 15200 ( 0.12%) 2695472 ( 0.03%) 177.33
dns 11998 ( 0.09%) 1822172 ( 0.02%) 151.87
halflif 1 ( 0.00%) 110 ( 0.00%) 110.00
everque 1 ( 0.00%) 108 ( 0.00%) 108.00
quake 2 ( 0.00%) 211 ( 0.00%) 105.50
other 3198 ( 0.02%) 872871 ( 0.01%) 272.94
icmp6 3689 ( 0.03%) 497615 ( 0.01%) 134.89
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 610 ( 0.00%) 569664 ( 0.01%) 933.88
tcpdump file: 200903310930.dump.gz (307.82 MB)