Traffic Trace Info
DumpFile: 200904022200.dump
FileSize: 1296.43MB
Id: 200904022200
StartTime: Thu Apr 2 22:00:01 2009
EndTime: Thu Apr 2 22:15:00 2009
TotalTime: 899.70 seconds
TotalCapSize: 1006.64MB CapLen: 96 bytes
# of packets: 18982144 (12457.10MB)
AvgRate: 116.15Mbps stddev:15.74M
IP flow (unique src/dst pair) Information
# of flows: 931730 (avg. 20.37 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.9% 2.3% 1.4% 1.0% 0.9% 0.9% 0.9% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 586041
Top 10 bandwidth usage (bytes/total in %):
18.9% 16.9% 7.8% 7.0% 4.0% 3.4% 3.2% 2.9% 2.9% 2.7%
# of IPv6 addresses: 1858
Top 10 bandwidth usage (bytes/total in %):
27.3% 26.9% 18.7% 13.5% 13.5% 8.7% 8.3% 6.2% 3.7% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200904022200.pktlen.png)
detailed numbers
[ 32- 63]: 3878225
[ 64- 127]: 4832520
[ 128- 255]: 1234305
[ 256- 511]: 385711
[ 512- 1023]: 389161
[ 1024- 2047]: 8262222
Protocol Breakdown
![[protocol breakdown chart]](200904022200.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 18982144 (100.00%) 13062215375 (100.00%) 688.13
ip 18947843 ( 99.82%) 13052814708 ( 99.93%) 688.88
tcp 13231129 ( 69.70%) 11157982653 ( 85.42%) 843.31
http(s) 6845877 ( 36.06%) 9374453637 ( 71.77%) 1369.36
http(c) 3856688 ( 20.32%) 324526499 ( 2.48%) 84.15
squid 324877 ( 1.71%) 257779789 ( 1.97%) 793.47
smtp 366062 ( 1.93%) 121194379 ( 0.93%) 331.08
nntp 4 ( 0.00%) 244 ( 0.00%) 61.00
ftp 56912 ( 0.30%) 25717999 ( 0.20%) 451.89
pop3 15959 ( 0.08%) 7125708 ( 0.05%) 446.50
imap 4737 ( 0.02%) 487104 ( 0.00%) 102.83
telnet 14467 ( 0.08%) 6251678 ( 0.05%) 432.13
ssh 157073 ( 0.83%) 51320033 ( 0.39%) 326.73
dns 31868 ( 0.17%) 14009743 ( 0.11%) 439.62
bgp 145 ( 0.00%) 51967 ( 0.00%) 358.39
napster 511 ( 0.00%) 400218 ( 0.00%) 783.21
realaud 30 ( 0.00%) 5121 ( 0.00%) 170.70
rtsp 2498 ( 0.01%) 2651352 ( 0.02%) 1061.39
icecast 5672 ( 0.03%) 6358867 ( 0.05%) 1121.10
hotline 4 ( 0.00%) 256 ( 0.00%) 64.00
other 1547602 ( 8.15%) 965639479 ( 7.39%) 623.96
udp 4386744 ( 23.11%) 1730408285 ( 13.25%) 394.46
dns 1839648 ( 9.69%) 313543707 ( 2.40%) 170.44
realaud 20774 ( 0.11%) 8452207 ( 0.06%) 406.86
halflif 656 ( 0.00%) 46999 ( 0.00%) 71.64
starcra 97 ( 0.00%) 16873 ( 0.00%) 173.95
everque 93 ( 0.00%) 16511 ( 0.00%) 177.54
unreal 19 ( 0.00%) 5161 ( 0.00%) 271.63
quake 28 ( 0.00%) 2147 ( 0.00%) 76.68
cuseeme 9 ( 0.00%) 960 ( 0.00%) 106.67
other 2525254 ( 13.30%) 1408183125 ( 10.78%) 557.64
icmp 1223946 ( 6.45%) 126968291 ( 0.97%) 103.74
ipip 322 ( 0.00%) 40016 ( 0.00%) 124.27
ipsec 269 ( 0.00%) 46014 ( 0.00%) 171.06
ip6 43394 ( 0.23%) 28860193 ( 0.22%) 665.07
other 62039 ( 0.33%) 8509256 ( 0.07%) 137.16
frag 49862 ( 0.26%) 55488598 ( 0.42%) 1112.84
ip6 34301 ( 0.18%) 9400667 ( 0.07%) 274.06
tcp6 13283 ( 0.07%) 6012020 ( 0.05%) 452.61
http(s) 2805 ( 0.01%) 1781976 ( 0.01%) 635.29
http(c) 6256 ( 0.03%) 1093210 ( 0.01%) 174.75
smtp 872 ( 0.00%) 389293 ( 0.00%) 446.44
ssh 2 ( 0.00%) 172 ( 0.00%) 86.00
bgp 379 ( 0.00%) 33317 ( 0.00%) 87.91
other 2969 ( 0.02%) 2714052 ( 0.02%) 914.13
udp6 16399 ( 0.09%) 2561730 ( 0.02%) 156.21
dns 14976 ( 0.08%) 2291634 ( 0.02%) 153.02
realaud 1 ( 0.00%) 105 ( 0.00%) 105.00
unreal 1 ( 0.00%) 110 ( 0.00%) 110.00
cuseeme 1 ( 0.00%) 108 ( 0.00%) 108.00
other 1420 ( 0.01%) 269773 ( 0.00%) 189.98
icmp6 4251 ( 0.02%) 503315 ( 0.00%) 118.40
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 338 ( 0.00%) 319522 ( 0.00%) 945.33
tcpdump file: 200904022200.dump.gz (464.31 MB)