Traffic Trace Info
DumpFile: 200904020530.dump
FileSize: 920.45MB
Id: 200904020530
StartTime: Thu Apr 2 05:30:00 2009
EndTime: Thu Apr 2 05:45:00 2009
TotalTime: 899.91 seconds
TotalCapSize: 717.45MB CapLen: 96 bytes
# of packets: 13301871 (9208.42MB)
AvgRate: 85.85Mbps stddev:14.16M
IP flow (unique src/dst pair) Information
# of flows: 696852 (avg. 19.09 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.8% 2.8% 2.2% 2.2% 1.7% 1.2% 1.1% 1.1% 1.1% 1.1%
IP address Information
# of IPv4 addresses: 423358
Top 10 bandwidth usage (bytes/total in %):
19.7% 13.7% 8.5% 7.9% 5.8% 5.2% 4.8% 4.4% 4.0% 2.8%
# of IPv6 addresses: 2163
Top 10 bandwidth usage (bytes/total in %):
22.4% 22.4% 15.8% 15.3% 12.0% 10.2% 9.2% 6.9% 5.4% 4.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200904020530.pktlen.png)
detailed numbers
[ 32- 63]: 2778439
[ 64- 127]: 3068655
[ 128- 255]: 726230
[ 256- 511]: 298087
[ 512- 1023]: 290327
[ 1024- 2047]: 6140133
Protocol Breakdown
![[protocol breakdown chart]](200904020530.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 13301871 (100.00%) 9655726523 (100.00%) 725.89
ip 13244587 ( 99.57%) 9647455897 ( 99.91%) 728.41
tcp 10393090 ( 78.13%) 8597273638 ( 89.04%) 827.21
http(s) 4845160 ( 36.42%) 6641539562 ( 68.78%) 1370.76
http(c) 2250314 ( 16.92%) 168721886 ( 1.75%) 74.98
squid 501850 ( 3.77%) 366819374 ( 3.80%) 730.93
smtp 313267 ( 2.36%) 40521950 ( 0.42%) 129.35
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 111260 ( 0.84%) 100123302 ( 1.04%) 899.90
pop3 5292 ( 0.04%) 3368975 ( 0.03%) 636.62
imap 3316 ( 0.02%) 354404 ( 0.00%) 106.88
telnet 4123 ( 0.03%) 314908 ( 0.00%) 76.38
ssh 636012 ( 4.78%) 103491437 ( 1.07%) 162.72
dns 16473 ( 0.12%) 3699115 ( 0.04%) 224.56
bgp 138 ( 0.00%) 42450 ( 0.00%) 307.61
napster 39 ( 0.00%) 5914 ( 0.00%) 151.64
realaud 27 ( 0.00%) 1802 ( 0.00%) 66.74
rtsp 160 ( 0.00%) 22560 ( 0.00%) 141.00
icecast 175 ( 0.00%) 11324 ( 0.00%) 64.71
hotline 14 ( 0.00%) 872 ( 0.00%) 62.29
other 1705408 ( 12.82%) 1168230083 ( 12.10%) 685.02
udp 2215953 ( 16.66%) 951966697 ( 9.86%) 429.60
dns 1113132 ( 8.37%) 216389355 ( 2.24%) 194.40
realaud 1820 ( 0.01%) 109720 ( 0.00%) 60.29
halflif 27 ( 0.00%) 2628 ( 0.00%) 97.33
starcra 28 ( 0.00%) 4595 ( 0.00%) 164.11
everque 54 ( 0.00%) 11962 ( 0.00%) 221.52
unreal 15 ( 0.00%) 2415 ( 0.00%) 161.00
quake 22 ( 0.00%) 1838 ( 0.00%) 83.55
cuseeme 1 ( 0.00%) 153 ( 0.00%) 153.00
other 1100670 ( 8.27%) 735279441 ( 7.61%) 668.03
icmp 593882 ( 4.46%) 89605796 ( 0.93%) 150.88
ipip 318 ( 0.00%) 38714 ( 0.00%) 121.74
ip6 31805 ( 0.24%) 7294279 ( 0.08%) 229.34
other 9539 ( 0.07%) 1276773 ( 0.01%) 133.85
frag 46104 ( 0.35%) 50411181 ( 0.52%) 1093.42
ip6 57284 ( 0.43%) 8270626 ( 0.09%) 144.38
tcp6 41098 ( 0.31%) 5488006 ( 0.06%) 133.53
http(s) 896 ( 0.01%) 573247 ( 0.01%) 639.78
http(c) 29990 ( 0.23%) 2517966 ( 0.03%) 83.96
smtp 447 ( 0.00%) 230445 ( 0.00%) 515.54
ftp 4259 ( 0.03%) 447376 ( 0.00%) 105.04
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 382 ( 0.00%) 33348 ( 0.00%) 87.30
other 5122 ( 0.04%) 1685452 ( 0.02%) 329.06
udp6 10776 ( 0.08%) 1934146 ( 0.02%) 179.49
dns 7696 ( 0.06%) 1199426 ( 0.01%) 155.85
halflif 1 ( 0.00%) 110 ( 0.00%) 110.00
starcra 3 ( 0.00%) 465 ( 0.00%) 155.00
everque 1 ( 0.00%) 96 ( 0.00%) 96.00
other 3075 ( 0.02%) 734049 ( 0.01%) 238.72
icmp6 5153 ( 0.04%) 626489 ( 0.01%) 121.58
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 227 ( 0.00%) 217905 ( 0.00%) 959.93
tcpdump file: 200904020530.dump.gz (330.30 MB)