Traffic Trace Info
DumpFile: 200904010130.dump
FileSize: 1081.37MB
Id: 200904010130
StartTime: Wed Apr 1 01:30:00 2009
EndTime: Wed Apr 1 01:45:00 2009
TotalTime: 899.77 seconds
TotalCapSize: 839.74MB CapLen: 96 bytes
# of packets: 15834502 (10958.51MB)
AvgRate: 102.18Mbps stddev:14.76M
IP flow (unique src/dst pair) Information
# of flows: 961283 (avg. 16.47 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.6% 2.2% 1.9% 1.8% 1.4% 1.3% 1.3% 1.3% 1.3% 1.0%
IP address Information
# of IPv4 addresses: 589350
Top 10 bandwidth usage (bytes/total in %):
17.5% 11.3% 11.2% 5.4% 4.0% 3.9% 3.5% 2.7% 2.2% 2.2%
# of IPv6 addresses: 1013
Top 10 bandwidth usage (bytes/total in %):
25.4% 24.5% 14.9% 14.9% 10.4% 6.0% 4.6% 3.7% 3.3% 3.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200904010130.pktlen.png)
detailed numbers
[ 32- 63]: 3337466
[ 64- 127]: 3317625
[ 128- 255]: 1201463
[ 256- 511]: 374778
[ 512- 1023]: 290402
[ 1024- 2047]: 7312768
Protocol Breakdown
![[protocol breakdown chart]](200904010130.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 15834502 (100.00%) 11490835692 (100.00%) 725.68
ip 15801431 ( 99.79%) 11485631334 ( 99.95%) 726.87
tcp 11461637 ( 72.38%) 10171040732 ( 88.51%) 887.40
http(s) 5688498 ( 35.92%) 7857546174 ( 68.38%) 1381.30
http(c) 2443896 ( 15.43%) 184518744 ( 1.61%) 75.50
squid 751927 ( 4.75%) 613727281 ( 5.34%) 816.21
smtp 413686 ( 2.61%) 76620946 ( 0.67%) 185.22
ftp 58564 ( 0.37%) 44469690 ( 0.39%) 759.33
pop3 5552 ( 0.04%) 3193226 ( 0.03%) 575.15
imap 34003 ( 0.21%) 44712309 ( 0.39%) 1314.95
telnet 9609 ( 0.06%) 2341788 ( 0.02%) 243.71
ssh 73270 ( 0.46%) 84017889 ( 0.73%) 1146.69
dns 22137 ( 0.14%) 5637582 ( 0.05%) 254.67
bgp 142 ( 0.00%) 40072 ( 0.00%) 282.20
napster 30 ( 0.00%) 1965 ( 0.00%) 65.50
realaud 11 ( 0.00%) 790 ( 0.00%) 71.82
rtsp 206 ( 0.00%) 32460 ( 0.00%) 157.57
icecast 353 ( 0.00%) 25558 ( 0.00%) 72.40
other 1959740 ( 12.38%) 1254153464 ( 10.91%) 639.96
udp 3432483 ( 21.68%) 1183699587 ( 10.30%) 344.85
dns 2083793 ( 13.16%) 324224028 ( 2.82%) 155.59
realaud 1804 ( 0.01%) 109542 ( 0.00%) 60.72
halflif 54 ( 0.00%) 5410 ( 0.00%) 100.19
starcra 52 ( 0.00%) 10242 ( 0.00%) 196.96
everque 67 ( 0.00%) 14031 ( 0.00%) 209.42
unreal 18 ( 0.00%) 3353 ( 0.00%) 186.28
quake 29 ( 0.00%) 3178 ( 0.00%) 109.59
cuseeme 7 ( 0.00%) 875 ( 0.00%) 125.00
other 1346503 ( 8.50%) 859193752 ( 7.48%) 638.09
icmp 871487 ( 5.50%) 124760554 ( 1.09%) 143.16
ipip 318 ( 0.00%) 38877 ( 0.00%) 122.25
ipsec 114 ( 0.00%) 17940 ( 0.00%) 157.37
ip6 24297 ( 0.15%) 4168684 ( 0.04%) 171.57
other 11095 ( 0.07%) 1904960 ( 0.02%) 171.70
frag 55359 ( 0.35%) 60695799 ( 0.53%) 1096.40
ip6 33071 ( 0.21%) 5204358 ( 0.05%) 157.37
tcp6 16088 ( 0.10%) 2647638 ( 0.02%) 164.57
http(s) 23 ( 0.00%) 30538 ( 0.00%) 1327.74
http(c) 13400 ( 0.08%) 1033576 ( 0.01%) 77.13
squid 3 ( 0.00%) 254 ( 0.00%) 84.67
smtp 367 ( 0.00%) 116173 ( 0.00%) 316.55
ssh 4 ( 0.00%) 344 ( 0.00%) 86.00
dns 14 ( 0.00%) 1545 ( 0.00%) 110.36
bgp 382 ( 0.00%) 33328 ( 0.00%) 87.25
other 1895 ( 0.01%) 1431880 ( 0.01%) 755.61
udp6 12606 ( 0.08%) 2002212 ( 0.02%) 158.83
dns 12557 ( 0.08%) 1996644 ( 0.02%) 159.01
halflif 1 ( 0.00%) 107 ( 0.00%) 107.00
everque 1 ( 0.00%) 111 ( 0.00%) 111.00
other 47 ( 0.00%) 5350 ( 0.00%) 113.83
icmp6 4329 ( 0.03%) 535615 ( 0.00%) 123.73
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 18 ( 0.00%) 14813 ( 0.00%) 822.94
tcpdump file: 200904010130.dump.gz (385.03 MB)