Traffic Trace Info
DumpFile: 200903312015.dump
FileSize: 1312.64MB
Id: 200903312015
StartTime: Tue Mar 31 20:15:00 2009
EndTime: Tue Mar 31 20:30:01 2009
TotalTime: 900.27 seconds
TotalCapSize: 1022.83MB CapLen: 96 bytes
# of packets: 18978188 (13102.11MB)
AvgRate: 122.08Mbps stddev:17.38M
IP flow (unique src/dst pair) Information
# of flows: 855542 (avg. 22.18 pkts/flow)
Top 10 big flow size (bytes/total in %):
6.7% 4.6% 3.5% 1.8% 1.4% 1.4% 1.3% 1.0% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 563216
Top 10 bandwidth usage (bytes/total in %):
10.6% 10.1% 7.1% 6.9% 6.5% 6.2% 4.6% 4.6% 3.6% 3.1%
# of IPv6 addresses: 2298
Top 10 bandwidth usage (bytes/total in %):
53.3% 53.2% 8.6% 8.6% 8.6% 5.1% 4.7% 4.7% 2.7% 2.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903312015.pktlen.png)
detailed numbers
[ 32- 63]: 3539624
[ 64- 127]: 4732776
[ 128- 255]: 1119644
[ 256- 511]: 440717
[ 512- 1023]: 371250
[ 1024- 2047]: 8774177
Protocol Breakdown
![[protocol breakdown chart]](200903312015.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 18978188 (100.00%) 13738556489 (100.00%) 723.91
ip 18833212 ( 99.24%) 13723648421 ( 99.89%) 728.69
tcp 14056066 ( 74.06%) 12144749127 ( 88.40%) 864.02
http(s) 5626334 ( 29.65%) 7584063006 ( 55.20%) 1347.96
http(c) 3066925 ( 16.16%) 285173384 ( 2.08%) 92.98
squid 607187 ( 3.20%) 464837635 ( 3.38%) 765.56
smtp 376373 ( 1.98%) 117702705 ( 0.86%) 312.73
nntp 2 ( 0.00%) 120 ( 0.00%) 60.00
ftp 637524 ( 3.36%) 598971717 ( 4.36%) 939.53
pop3 7766 ( 0.04%) 5407758 ( 0.04%) 696.34
imap 71350 ( 0.38%) 97889416 ( 0.71%) 1371.96
telnet 1974 ( 0.01%) 267988 ( 0.00%) 135.76
ssh 90597 ( 0.48%) 103041911 ( 0.75%) 1137.37
dns 27700 ( 0.15%) 14051743 ( 0.10%) 507.28
bgp 142 ( 0.00%) 45204 ( 0.00%) 318.34
napster 875 ( 0.00%) 680383 ( 0.00%) 777.58
realaud 20 ( 0.00%) 1420 ( 0.00%) 71.00
rtsp 73 ( 0.00%) 10008 ( 0.00%) 137.10
icecast 491 ( 0.00%) 80130 ( 0.00%) 163.20
hotline 6 ( 0.00%) 567 ( 0.00%) 94.50
other 3540598 ( 18.66%) 2872516292 ( 20.91%) 811.31
udp 3887123 ( 20.48%) 1439504353 ( 10.48%) 370.33
dns 1863528 ( 9.82%) 319332480 ( 2.32%) 171.36
realaud 945 ( 0.00%) 58720 ( 0.00%) 62.14
halflif 33 ( 0.00%) 3413 ( 0.00%) 103.42
starcra 39 ( 0.00%) 7497 ( 0.00%) 192.23
everque 121 ( 0.00%) 20530 ( 0.00%) 169.67
unreal 25 ( 0.00%) 3428 ( 0.00%) 137.12
quake 28 ( 0.00%) 3281 ( 0.00%) 117.18
cuseeme 9 ( 0.00%) 836 ( 0.00%) 92.89
other 2022174 ( 10.66%) 1119895288 ( 8.15%) 553.81
icmp 762897 ( 4.02%) 119233917 ( 0.87%) 156.29
ipip 341 ( 0.00%) 40986 ( 0.00%) 120.19
ipsec 168 ( 0.00%) 26760 ( 0.00%) 159.29
ip6 26887 ( 0.14%) 6785280 ( 0.05%) 252.36
other 99730 ( 0.53%) 13307998 ( 0.10%) 133.44
frag 61976 ( 0.33%) 66082488 ( 0.48%) 1066.26
ip6 144976 ( 0.76%) 14908068 ( 0.11%) 102.83
tcp6 121946 ( 0.64%) 10677631 ( 0.08%) 87.56
http(s) 170 ( 0.00%) 143820 ( 0.00%) 846.00
http(c) 11549 ( 0.06%) 934089 ( 0.01%) 80.88
smtp 562 ( 0.00%) 243276 ( 0.00%) 432.88
ftp 22 ( 0.00%) 2060 ( 0.00%) 93.64
ssh 1 ( 0.00%) 86 ( 0.00%) 86.00
bgp 369 ( 0.00%) 30859 ( 0.00%) 83.63
other 109273 ( 0.58%) 9323441 ( 0.07%) 85.32
udp6 17242 ( 0.09%) 2823698 ( 0.02%) 163.77
dns 14969 ( 0.08%) 2311886 ( 0.02%) 154.44
everque 2 ( 0.00%) 225 ( 0.00%) 112.50
other 2271 ( 0.01%) 511587 ( 0.00%) 225.27
icmp6 4906 ( 0.03%) 629683 ( 0.00%) 128.35
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 851 ( 0.00%) 772840 ( 0.01%) 908.16
tcpdump file: 200903312015.dump.gz (456.78 MB)