Traffic Trace Info
DumpFile: 200904010845.dump
FileSize: 741.53MB
Id: 200904010845
StartTime: Wed Apr 1 08:45:00 2009
EndTime: Wed Apr 1 09:00:01 2009
TotalTime: 900.16 seconds
TotalCapSize: 580.82MB CapLen: 96 bytes
# of packets: 10531460 (6669.88MB)
AvgRate: 62.16Mbps stddev:7.98M
IP flow (unique src/dst pair) Information
# of flows: 599997 (avg. 17.55 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.3% 3.0% 2.5% 2.4% 2.4% 2.4% 1.9% 1.8% 1.7% 1.4%
IP address Information
# of IPv4 addresses: 404506
Top 10 bandwidth usage (bytes/total in %):
10.6% 9.0% 8.4% 4.4% 4.0% 4.0% 3.4% 3.3% 3.3% 3.2%
# of IPv6 addresses: 893
Top 10 bandwidth usage (bytes/total in %):
75.5% 67.9% 7.6% 6.1% 3.6% 3.4% 2.6% 2.6% 2.4% 2.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200904010845.pktlen.png)
detailed numbers
[ 32- 63]: 1993188
[ 64- 127]: 3108429
[ 128- 255]: 498317
[ 256- 511]: 308479
[ 512- 1023]: 265132
[ 1024- 2047]: 4357915
Protocol Breakdown
![[protocol breakdown chart]](200904010845.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 10531460 (100.00%) 6993879680 (100.00%) 664.09
ip 10496887 ( 99.67%) 6977255623 ( 99.76%) 664.70
tcp 8123391 ( 77.13%) 6164802466 ( 88.15%) 758.90
http(s) 3254618 ( 30.90%) 4329040465 ( 61.90%) 1330.12
http(c) 1560790 ( 14.82%) 145084090 ( 2.07%) 92.96
squid 588268 ( 5.59%) 434062347 ( 6.21%) 737.86
smtp 235344 ( 2.23%) 46299832 ( 0.66%) 196.73
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 83877 ( 0.80%) 69847243 ( 1.00%) 832.73
pop3 6248 ( 0.06%) 2244012 ( 0.03%) 359.16
imap 3481 ( 0.03%) 664211 ( 0.01%) 190.81
telnet 515 ( 0.00%) 39657 ( 0.00%) 77.00
ssh 551483 ( 5.24%) 67098908 ( 0.96%) 121.67
dns 14102 ( 0.13%) 2748118 ( 0.04%) 194.87
bgp 136 ( 0.00%) 39550 ( 0.00%) 290.81
napster 9 ( 0.00%) 840 ( 0.00%) 93.33
realaud 14 ( 0.00%) 1012 ( 0.00%) 72.29
rtsp 57 ( 0.00%) 16269 ( 0.00%) 285.42
icecast 102 ( 0.00%) 7521 ( 0.00%) 73.74
hotline 17 ( 0.00%) 3216 ( 0.00%) 189.18
other 1824239 ( 17.32%) 1067599715 ( 15.26%) 585.23
udp 1702052 ( 16.16%) 712188044 ( 10.18%) 418.43
dns 822567 ( 7.81%) 201401080 ( 2.88%) 244.84
realaud 30 ( 0.00%) 4212 ( 0.00%) 140.40
halflif 21 ( 0.00%) 3249 ( 0.00%) 154.71
starcra 24 ( 0.00%) 4193 ( 0.00%) 174.71
everque 46 ( 0.00%) 10870 ( 0.00%) 236.30
unreal 8 ( 0.00%) 1272 ( 0.00%) 159.00
quake 18 ( 0.00%) 1732 ( 0.00%) 96.22
cuseeme 2 ( 0.00%) 153 ( 0.00%) 76.50
other 879131 ( 8.35%) 510574385 ( 7.30%) 580.77
icmp 637836 ( 6.06%) 95815610 ( 1.37%) 150.22
ipip 340 ( 0.00%) 43481 ( 0.00%) 127.89
ipsec 110 ( 0.00%) 17412 ( 0.00%) 158.29
ip6 22226 ( 0.21%) 2972842 ( 0.04%) 133.76
other 10932 ( 0.10%) 1415768 ( 0.02%) 129.51
frag 40613 ( 0.39%) 44724059 ( 0.64%) 1101.23
ip6 34573 ( 0.33%) 16624057 ( 0.24%) 480.84
tcp6 19430 ( 0.18%) 14561824 ( 0.21%) 749.45
http(s) 991 ( 0.01%) 665916 ( 0.01%) 671.96
http(c) 3260 ( 0.03%) 570235 ( 0.01%) 174.92
squid 3 ( 0.00%) 234 ( 0.00%) 78.00
smtp 475 ( 0.00%) 186796 ( 0.00%) 393.25
imap 1 ( 0.00%) 74 ( 0.00%) 74.00
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 360 ( 0.00%) 30534 ( 0.00%) 84.82
other 14338 ( 0.14%) 13107863 ( 0.19%) 914.20
udp6 9678 ( 0.09%) 1422883 ( 0.02%) 147.02
dns 9637 ( 0.09%) 1418390 ( 0.02%) 147.18
halflif 1 ( 0.00%) 104 ( 0.00%) 104.00
everque 1 ( 0.00%) 99 ( 0.00%) 99.00
other 39 ( 0.00%) 4290 ( 0.00%) 110.00
icmp6 5434 ( 0.05%) 634775 ( 0.01%) 116.82
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 1 ( 0.00%) 495 ( 0.00%) 495.00
tcpdump file: 200904010845.dump.gz (250.92 MB)