Traffic Trace Info
DumpFile: 200903312130.dump
FileSize: 1145.02MB
Id: 200903312130
StartTime: Tue Mar 31 21:30:01 2009
EndTime: Tue Mar 31 21:45:01 2009
TotalTime: 899.74 seconds
TotalCapSize: 894.52MB CapLen: 96 bytes
# of packets: 16405165 (11843.93MB)
AvgRate: 110.40Mbps stddev:13.80M
IP flow (unique src/dst pair) Information
# of flows: 895568 (avg. 18.32 pkts/flow)
Top 10 big flow size (bytes/total in %):
7.6% 4.1% 1.9% 1.8% 1.7% 1.6% 1.2% 1.1% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 557197
Top 10 bandwidth usage (bytes/total in %):
12.0% 9.7% 9.4% 9.3% 7.6% 7.6% 4.4% 4.2% 3.1% 2.8%
# of IPv6 addresses: 2115
Top 10 bandwidth usage (bytes/total in %):
43.9% 43.8% 12.0% 12.0% 10.5% 8.8% 6.6% 6.0% 3.2% 2.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200903312130.pktlen.png)
detailed numbers
[ 32- 63]: 3355839
[ 64- 127]: 3501358
[ 128- 255]: 947671
[ 256- 511]: 430739
[ 512- 1023]: 392516
[ 1024- 2047]: 7777042
Protocol Breakdown
![[protocol breakdown chart]](200903312130.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 16405165 (100.00%) 12419263858 (100.00%) 757.03
ip 16265026 ( 99.15%) 12404898118 ( 99.88%) 762.67
tcp 12923905 ( 78.78%) 11568803244 ( 93.15%) 895.15
http(s) 5416680 ( 33.02%) 7379359954 ( 59.42%) 1362.34
http(c) 2771058 ( 16.89%) 247172229 ( 1.99%) 89.20
squid 688229 ( 4.20%) 571932511 ( 4.61%) 831.02
smtp 399814 ( 2.44%) 74498498 ( 0.60%) 186.33
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 582330 ( 3.55%) 571609188 ( 4.60%) 981.59
pop3 8296 ( 0.05%) 4808812 ( 0.04%) 579.65
imap 4320 ( 0.03%) 705957 ( 0.01%) 163.42
telnet 10289 ( 0.06%) 2877143 ( 0.02%) 279.63
ssh 700742 ( 4.27%) 947388264 ( 7.63%) 1351.98
dns 18975 ( 0.12%) 4125397 ( 0.03%) 217.41
bgp 149 ( 0.00%) 48929 ( 0.00%) 328.38
napster 35 ( 0.00%) 2932 ( 0.00%) 83.77
realaud 18 ( 0.00%) 2523 ( 0.00%) 140.17
rtsp 1472 ( 0.01%) 1486890 ( 0.01%) 1010.12
icecast 767 ( 0.00%) 48775 ( 0.00%) 63.59
hotline 2 ( 0.00%) 126 ( 0.00%) 63.00
other 2320717 ( 14.15%) 1762734396 ( 14.19%) 759.56
udp 2182189 ( 13.30%) 669951294 ( 5.39%) 307.01
dns 1214050 ( 7.40%) 262823585 ( 2.12%) 216.48
realaud 18047 ( 0.11%) 8264197 ( 0.07%) 457.93
halflif 36 ( 0.00%) 3694 ( 0.00%) 102.61
starcra 234 ( 0.00%) 18932 ( 0.00%) 80.91
everque 83 ( 0.00%) 16806 ( 0.00%) 202.48
unreal 8 ( 0.00%) 1669 ( 0.00%) 208.62
quake 27 ( 0.00%) 2871 ( 0.00%) 106.33
cuseeme 12 ( 0.00%) 1857 ( 0.00%) 154.75
other 949503 ( 5.79%) 398648583 ( 3.21%) 419.85
icmp 1104364 ( 6.73%) 141009689 ( 1.14%) 127.68
ipip 314 ( 0.00%) 38296 ( 0.00%) 121.96
ipsec 151 ( 0.00%) 23610 ( 0.00%) 156.36
ip6 31979 ( 0.19%) 14042492 ( 0.11%) 439.12
other 22124 ( 0.13%) 11029493 ( 0.09%) 498.53
frag 53067 ( 0.32%) 58486262 ( 0.47%) 1102.12
ip6 140139 ( 0.85%) 14365740 ( 0.12%) 102.51
tcp6 115710 ( 0.71%) 10121799 ( 0.08%) 87.48
http(s) 11 ( 0.00%) 12338 ( 0.00%) 1121.64
http(c) 27942 ( 0.17%) 2200498 ( 0.02%) 78.75
squid 5 ( 0.00%) 426 ( 0.00%) 85.20
smtp 541 ( 0.00%) 187983 ( 0.00%) 347.47
ssh 8 ( 0.00%) 688 ( 0.00%) 86.00
dns 10 ( 0.00%) 1092 ( 0.00%) 109.20
bgp 376 ( 0.00%) 33072 ( 0.00%) 87.96
other 86817 ( 0.53%) 7685702 ( 0.06%) 88.53
udp6 18718 ( 0.11%) 2966350 ( 0.02%) 158.48
dns 16734 ( 0.10%) 2656337 ( 0.02%) 158.74
everque 1 ( 0.00%) 118 ( 0.00%) 118.00
quake 1 ( 0.00%) 104 ( 0.00%) 104.00
other 1982 ( 0.01%) 309791 ( 0.00%) 156.30
icmp6 4992 ( 0.03%) 634190 ( 0.01%) 127.04
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 689 ( 0.00%) 639321 ( 0.01%) 927.90
tcpdump file: 200903312130.dump.gz (397.07 MB)