Traffic Trace Info
DumpFile: 200904022330.dump
FileSize: 1428.26MB
Id: 200904022330
StartTime: Thu Apr 2 23:30:00 2009
EndTime: Thu Apr 2 23:45:00 2009
TotalTime: 899.85 seconds
TotalCapSize: 1108.87MB CapLen: 96 bytes
# of packets: 20924816 (14886.65MB)
AvgRate: 138.79Mbps stddev:13.65M
IP flow (unique src/dst pair) Information
# of flows: 961084 (avg. 21.77 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.7% 1.8% 1.6% 1.3% 1.2% 1.1% 1.0% 1.0% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 579282
Top 10 bandwidth usage (bytes/total in %):
18.5% 15.4% 9.9% 6.4% 3.0% 2.8% 2.7% 2.6% 2.6% 2.5%
# of IPv6 addresses: 1740
Top 10 bandwidth usage (bytes/total in %):
31.4% 21.7% 16.6% 16.4% 9.9% 8.7% 7.2% 6.9% 5.0% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](200904022330.pktlen.png)
detailed numbers
[ 32- 63]: 4857337
[ 64- 127]: 4219890
[ 128- 255]: 1099997
[ 256- 511]: 426294
[ 512- 1023]: 524862
[ 1024- 2047]: 9796436
Protocol Breakdown
![[protocol breakdown chart]](200904022330.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 20924816 (100.00%) 15609779746 (100.00%) 745.99
ip 20889734 ( 99.83%) 15601029979 ( 99.94%) 746.83
tcp 16620646 ( 79.43%) 14319095949 ( 91.73%) 861.52
http(s) 8256456 ( 39.46%) 11275023217 ( 72.23%) 1365.60
http(c) 4540061 ( 21.70%) 349578908 ( 2.24%) 77.00
squid 431096 ( 2.06%) 356966113 ( 2.29%) 828.04
smtp 576679 ( 2.76%) 133854789 ( 0.86%) 232.11
ftp 48588 ( 0.23%) 20803574 ( 0.13%) 428.16
pop3 10622 ( 0.05%) 8398260 ( 0.05%) 790.65
imap 3888 ( 0.02%) 780339 ( 0.00%) 200.70
telnet 14493 ( 0.07%) 6188800 ( 0.04%) 427.02
ssh 87802 ( 0.42%) 76703408 ( 0.49%) 873.60
dns 27244 ( 0.13%) 10013017 ( 0.06%) 367.53
bgp 135 ( 0.00%) 43925 ( 0.00%) 325.37
napster 14 ( 0.00%) 4393 ( 0.00%) 313.79
realaud 82 ( 0.00%) 15379 ( 0.00%) 187.55
rtsp 33700 ( 0.16%) 47739221 ( 0.31%) 1416.59
icecast 860 ( 0.00%) 56317 ( 0.00%) 65.48
hotline 10 ( 0.00%) 616 ( 0.00%) 61.60
other 2588890 ( 12.37%) 2032923403 ( 13.02%) 785.25
udp 3393050 ( 16.22%) 1165155837 ( 7.46%) 343.39
dns 1288618 ( 6.16%) 251944768 ( 1.61%) 195.52
realaud 5655 ( 0.03%) 364008 ( 0.00%) 64.37
halflif 11955 ( 0.06%) 5488358 ( 0.04%) 459.08
starcra 77 ( 0.00%) 15709 ( 0.00%) 204.01
everque 76 ( 0.00%) 15141 ( 0.00%) 199.22
unreal 13 ( 0.00%) 2042 ( 0.00%) 157.08
quake 36 ( 0.00%) 5515 ( 0.00%) 153.19
cuseeme 7 ( 0.00%) 629 ( 0.00%) 89.86
other 2086439 ( 9.97%) 907193718 ( 5.81%) 434.80
icmp 775997 ( 3.71%) 95260499 ( 0.61%) 122.76
ipip 312 ( 0.00%) 38422 ( 0.00%) 123.15
ipsec 270 ( 0.00%) 46124 ( 0.00%) 170.83
ip6 35084 ( 0.17%) 10199805 ( 0.07%) 290.73
other 64375 ( 0.31%) 11233343 ( 0.07%) 174.50
frag 48451 ( 0.23%) 54075470 ( 0.35%) 1116.09
ip6 35082 ( 0.17%) 8749767 ( 0.06%) 249.41
tcp6 15729 ( 0.08%) 5679241 ( 0.04%) 361.07
http(s) 3162 ( 0.02%) 1928339 ( 0.01%) 609.85
http(c) 7679 ( 0.04%) 1245928 ( 0.01%) 162.25
smtp 371 ( 0.00%) 173804 ( 0.00%) 468.47
imap 2 ( 0.00%) 225 ( 0.00%) 112.50
bgp 385 ( 0.00%) 34164 ( 0.00%) 88.74
other 4130 ( 0.02%) 2296781 ( 0.01%) 556.12
udp6 15009 ( 0.07%) 2288434 ( 0.01%) 152.47
dns 13738 ( 0.07%) 2082460 ( 0.01%) 151.58
starcra 1 ( 0.00%) 180 ( 0.00%) 180.00
cuseeme 1 ( 0.00%) 110 ( 0.00%) 110.00
other 1269 ( 0.01%) 205684 ( 0.00%) 162.08
icmp6 4059 ( 0.02%) 538244 ( 0.00%) 132.61
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 254 ( 0.00%) 239632 ( 0.00%) 943.43
tcpdump file: 200904022330.dump.gz (507.69 MB)