Traffic Trace Info
DumpFile: 200903311830.dump
FileSize: 1404.07MB
Id: 200903311830
StartTime: Tue Mar 31 18:30:01 2009
EndTime: Tue Mar 31 18:45:00 2009
TotalTime: 899.22 seconds
TotalCapSize: 1100.49MB CapLen: 96 bytes
# of packets: 19886611 (11577.57MB)
AvgRate: 108.00Mbps stddev:15.50M
IP flow (unique src/dst pair) Information
# of flows: 814848 (avg. 24.41 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.7% 2.1% 1.8% 1.5% 1.4% 1.3% 1.3% 1.1% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 522591
Top 10 bandwidth usage (bytes/total in %):
11.5% 8.1% 8.1% 6.8% 3.9% 3.7% 3.4% 2.6% 2.5% 2.4%
# of IPv6 addresses: 1972
Top 10 bandwidth usage (bytes/total in %):
19.1% 18.7% 12.6% 10.7% 10.3% 6.7% 5.6% 4.4% 4.4% 4.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903311830.pktlen.png)
detailed numbers
[ 32- 63]: 4325741
[ 64- 127]: 6119824
[ 128- 255]: 925124
[ 256- 511]: 472739
[ 512- 1023]: 601286
[ 1024- 2047]: 7441897
Protocol Breakdown
![[protocol breakdown chart]](200903311830.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 19886611 (100.00%) 12139959243 (100.00%) 610.46
ip 19857873 ( 99.86%) 12133143831 ( 99.94%) 611.00
tcp 13628126 ( 68.53%) 10626776328 ( 87.54%) 779.77
http(s) 6042854 ( 30.39%) 7985110179 ( 65.78%) 1321.41
http(c) 3668337 ( 18.45%) 322635712 ( 2.66%) 87.95
squid 585358 ( 2.94%) 438157586 ( 3.61%) 748.53
smtp 357823 ( 1.80%) 123745552 ( 1.02%) 345.83
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 506115 ( 2.55%) 491611364 ( 4.05%) 971.34
pop3 10596 ( 0.05%) 5545405 ( 0.05%) 523.35
imap 7559 ( 0.04%) 6954949 ( 0.06%) 920.09
telnet 5703 ( 0.03%) 769080 ( 0.01%) 134.86
ssh 132303 ( 0.67%) 13891900 ( 0.11%) 105.00
dns 25587 ( 0.13%) 18208636 ( 0.15%) 711.64
bgp 142 ( 0.00%) 47353 ( 0.00%) 333.47
napster 38 ( 0.00%) 3646 ( 0.00%) 95.95
realaud 27 ( 0.00%) 2491 ( 0.00%) 92.26
rtsp 162084 ( 0.82%) 10166627 ( 0.08%) 62.72
icecast 631 ( 0.00%) 75913 ( 0.00%) 120.31
hotline 8 ( 0.00%) 724 ( 0.00%) 90.50
other 2122938 ( 10.68%) 1209847831 ( 9.97%) 569.89
udp 2927799 ( 14.72%) 1220480935 ( 10.05%) 416.86
dns 1233382 ( 6.20%) 271010018 ( 2.23%) 219.73
realaud 14587 ( 0.07%) 5354083 ( 0.04%) 367.04
halflif 662 ( 0.00%) 40928 ( 0.00%) 61.82
starcra 37 ( 0.00%) 7115 ( 0.00%) 192.30
everque 115 ( 0.00%) 20067 ( 0.00%) 174.50
unreal 1754 ( 0.01%) 1668461 ( 0.01%) 951.23
quake 36 ( 0.00%) 6750 ( 0.00%) 187.50
cuseeme 3 ( 0.00%) 929 ( 0.00%) 309.67
other 1677038 ( 8.43%) 942216871 ( 7.76%) 561.83
icmp 3138991 ( 15.78%) 241035387 ( 1.99%) 76.79
ipip 302 ( 0.00%) 37088 ( 0.00%) 122.81
ipsec 108 ( 0.00%) 17064 ( 0.00%) 158.00
ip6 50340 ( 0.25%) 28972823 ( 0.24%) 575.54
other 112207 ( 0.56%) 15824206 ( 0.13%) 141.03
frag 47363 ( 0.24%) 51951482 ( 0.43%) 1096.88
ip6 28738 ( 0.14%) 6815412 ( 0.06%) 237.16
tcp6 6251 ( 0.03%) 2938020 ( 0.02%) 470.01
http(s) 692 ( 0.00%) 871038 ( 0.01%) 1258.73
http(c) 2435 ( 0.01%) 228557 ( 0.00%) 93.86
smtp 1104 ( 0.01%) 439937 ( 0.00%) 398.49
ssh 5 ( 0.00%) 1566 ( 0.00%) 313.20
dns 5 ( 0.00%) 545 ( 0.00%) 109.00
bgp 358 ( 0.00%) 29730 ( 0.00%) 83.04
other 1652 ( 0.01%) 1366647 ( 0.01%) 827.27
udp6 17250 ( 0.09%) 2719635 ( 0.02%) 157.66
dns 15417 ( 0.08%) 2432889 ( 0.02%) 157.81
everque 1 ( 0.00%) 116 ( 0.00%) 116.00
other 1832 ( 0.01%) 286630 ( 0.00%) 156.46
icmp6 4556 ( 0.02%) 571223 ( 0.00%) 125.38
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 651 ( 0.00%) 582454 ( 0.00%) 894.71
tcpdump file: 200903311830.dump.gz (455.11 MB)