Traffic Trace Info
DumpFile: 200904021300.dump
FileSize: 1339.67MB
Id: 200904021300
StartTime: Thu Apr 2 13:00:00 2009
EndTime: Thu Apr 2 13:15:00 2009
TotalTime: 900.15 seconds
TotalCapSize: 1041.34MB CapLen: 96 bytes
# of packets: 19551029 (13511.58MB)
AvgRate: 125.92Mbps stddev:15.06M
IP flow (unique src/dst pair) Information
# of flows: 769295 (avg. 25.41 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.6% 3.6% 3.0% 2.5% 2.0% 1.7% 1.4% 1.3% 1.3% 1.2%
IP address Information
# of IPv4 addresses: 426407
Top 10 bandwidth usage (bytes/total in %):
17.4% 17.0% 7.5% 5.6% 4.0% 3.9% 3.1% 3.1% 3.1% 2.7%
# of IPv6 addresses: 1747
Top 10 bandwidth usage (bytes/total in %):
29.6% 22.1% 15.0% 14.8% 14.8% 8.1% 7.5% 7.1% 5.5% 3.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200904021300.pktlen.png)
detailed numbers
[ 32- 63]: 4268658
[ 64- 127]: 4572191
[ 128- 255]: 625497
[ 256- 511]: 464911
[ 512- 1023]: 533902
[ 1024- 2047]: 9085870
Protocol Breakdown
![[protocol breakdown chart]](200904021300.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 19551029 (100.00%) 14167915439 (100.00%) 724.66
ip 19520889 ( 99.85%) 14159351231 ( 99.94%) 725.34
tcp 15020954 ( 76.83%) 12465319256 ( 87.98%) 829.86
http(s) 6882938 ( 35.20%) 9033577982 ( 63.76%) 1312.46
http(c) 4214577 ( 21.56%) 635244362 ( 4.48%) 150.73
squid 265922 ( 1.36%) 186308621 ( 1.32%) 700.61
smtp 287098 ( 1.47%) 89193007 ( 0.63%) 310.67
nntp 2 ( 0.00%) 120 ( 0.00%) 60.00
ftp 65462 ( 0.33%) 21758256 ( 0.15%) 332.38
pop3 11091 ( 0.06%) 4085894 ( 0.03%) 368.40
imap 5347 ( 0.03%) 1842752 ( 0.01%) 344.63
telnet 7946 ( 0.04%) 1629968 ( 0.01%) 205.13
ssh 12291 ( 0.06%) 2728250 ( 0.02%) 221.97
dns 19885 ( 0.10%) 5549606 ( 0.04%) 279.09
bgp 142 ( 0.00%) 51274 ( 0.00%) 361.08
napster 28 ( 0.00%) 1736 ( 0.00%) 62.00
realaud 36 ( 0.00%) 2376 ( 0.00%) 66.00
rtsp 128020 ( 0.65%) 7866877 ( 0.06%) 61.45
icecast 10257 ( 0.05%) 7890065 ( 0.06%) 769.24
hotline 2 ( 0.00%) 124 ( 0.00%) 62.00
other 3109908 ( 15.91%) 2467587866 ( 17.42%) 793.46
udp 3711858 ( 18.99%) 1594929275 ( 11.26%) 429.68
dns 1074939 ( 5.50%) 241984885 ( 1.71%) 225.11
realaud 1822 ( 0.01%) 109742 ( 0.00%) 60.23
halflif 579 ( 0.00%) 35779 ( 0.00%) 61.79
starcra 36 ( 0.00%) 5467 ( 0.00%) 151.86
everque 57 ( 0.00%) 11094 ( 0.00%) 194.63
unreal 19 ( 0.00%) 3064 ( 0.00%) 161.26
quake 22 ( 0.00%) 1799 ( 0.00%) 81.77
cuseeme 8 ( 0.00%) 1381 ( 0.00%) 172.62
other 2634230 ( 13.47%) 1352646559 ( 9.55%) 513.49
icmp 641290 ( 3.28%) 53593096 ( 0.38%) 83.57
ipip 306 ( 0.00%) 38140 ( 0.00%) 124.64
ip6 26576 ( 0.14%) 5386669 ( 0.04%) 202.69
other 119905 ( 0.61%) 40084795 ( 0.28%) 334.30
frag 38658 ( 0.20%) 43581496 ( 0.31%) 1127.36
ip6 30140 ( 0.15%) 8564208 ( 0.06%) 284.15
tcp6 9544 ( 0.05%) 5155177 ( 0.04%) 540.15
http(s) 2307 ( 0.01%) 1581200 ( 0.01%) 685.39
http(c) 3527 ( 0.02%) 727474 ( 0.01%) 206.26
squid 24 ( 0.00%) 2032 ( 0.00%) 84.67
smtp 503 ( 0.00%) 140015 ( 0.00%) 278.36
imap 65 ( 0.00%) 15150 ( 0.00%) 233.08
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 381 ( 0.00%) 33457 ( 0.00%) 87.81
other 2735 ( 0.01%) 2655677 ( 0.02%) 971.00
udp6 15346 ( 0.08%) 2468925 ( 0.02%) 160.88
dns 14033 ( 0.07%) 2175114 ( 0.02%) 155.00
realaud 1 ( 0.00%) 118 ( 0.00%) 118.00
quake 1 ( 0.00%) 102 ( 0.00%) 102.00
other 1311 ( 0.01%) 293591 ( 0.00%) 223.94
icmp6 4856 ( 0.02%) 590603 ( 0.00%) 121.62
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 364 ( 0.00%) 345423 ( 0.00%) 948.96
tcpdump file: 200904021300.dump.gz (456.71 MB)