Traffic Trace Info
DumpFile: 201004130000.dump
FileSize: 2489.72MB
Id: 201004130000
StartTime: Tue Apr 13 00:00:01 2010
EndTime: Tue Apr 13 00:15:01 2010
TotalTime: 899.81 seconds
TotalCapSize: 1946.21MB CapLen: 96 bytes
# of packets: 35618581 (23975.35MB)
AvgRate: 223.49Mbps stddev:18.58M
IP flow (unique src/dst pair) Information
# of flows: 1189259 (avg. 29.95 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.6% 1.0% 0.9% 0.8% 0.7% 0.7% 0.6% 0.6% 0.5% 0.5%
IP address Information
# of IPv4 addresses: 661832
Top 10 bandwidth usage (bytes/total in %):
12.3% 11.5% 9.6% 9.0% 5.6% 3.4% 3.0% 2.7% 2.4% 1.8%
# of IPv6 addresses: 1035
Top 10 bandwidth usage (bytes/total in %):
25.3% 9.7% 7.9% 6.9% 5.1% 4.4% 3.6% 3.6% 3.5% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004130000.pktlen.png)
detailed numbers
[ 32- 63]: 6245547
[ 64- 127]: 9224508
[ 128- 255]: 2306117
[ 256- 511]: 1599806
[ 512- 1023]: 739994
[ 1024- 2047]: 15502609
Protocol Breakdown
![[protocol breakdown chart]](201004130000.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 35618581 (100.00%) 25139972416 (100.00%) 705.81
ip 35564397 ( 99.85%) 25131335202 ( 99.97%) 706.64
tcp 23856560 ( 66.98%) 19564822530 ( 77.82%) 820.10
http(s) 11691343 ( 32.82%) 16419744656 ( 65.31%) 1404.44
http(c) 6330080 ( 17.77%) 601721153 ( 2.39%) 95.06
squid 293877 ( 0.83%) 89522695 ( 0.36%) 304.63
smtp 327818 ( 0.92%) 63891436 ( 0.25%) 194.90
ftp 22335 ( 0.06%) 2287501 ( 0.01%) 102.42
pop3 33364 ( 0.09%) 38976422 ( 0.16%) 1168.22
imap 1835 ( 0.01%) 387574 ( 0.00%) 211.21
telnet 608 ( 0.00%) 75266 ( 0.00%) 123.79
ssh 1434583 ( 4.03%) 456975098 ( 1.82%) 318.54
dns 57091 ( 0.16%) 3953975 ( 0.02%) 69.26
bgp 135 ( 0.00%) 48130 ( 0.00%) 356.52
napster 15 ( 0.00%) 1030 ( 0.00%) 68.67
realaud 55 ( 0.00%) 4835 ( 0.00%) 87.91
rtsp 91745 ( 0.26%) 70275801 ( 0.28%) 765.99
icecast 8461 ( 0.02%) 577740 ( 0.00%) 68.28
hotline 16 ( 0.00%) 1422 ( 0.00%) 88.88
other 3563042 ( 10.00%) 1816368376 ( 7.23%) 509.78
udp 8002767 ( 22.47%) 3983302376 ( 15.84%) 497.74
dns 765200 ( 2.15%) 130317227 ( 0.52%) 170.30
realaud 478 ( 0.00%) 446832 ( 0.00%) 934.79
halflif 122 ( 0.00%) 15852 ( 0.00%) 129.93
starcra 277 ( 0.00%) 34739 ( 0.00%) 125.41
everque 717 ( 0.00%) 110468 ( 0.00%) 154.07
unreal 66 ( 0.00%) 9382 ( 0.00%) 142.15
quake 70 ( 0.00%) 10232 ( 0.00%) 146.17
cuseeme 3 ( 0.00%) 309 ( 0.00%) 103.00
other 7235678 ( 20.31%) 3852259830 ( 15.32%) 532.40
icmp 826997 ( 2.32%) 124362410 ( 0.49%) 150.38
ipip 362 ( 0.00%) 42344 ( 0.00%) 116.97
ipsec 1722 ( 0.00%) 580228 ( 0.00%) 336.95
ip6 2677774 ( 7.52%) 1426332764 ( 5.67%) 532.66
other 198215 ( 0.56%) 31892550 ( 0.13%) 160.90
frag 1526 ( 0.00%) 1510034 ( 0.01%) 989.54
ip6 54184 ( 0.15%) 8637214 ( 0.03%) 159.41
tcp6 16972 ( 0.05%) 1778273 ( 0.01%) 104.78
http(s) 105 ( 0.00%) 91170 ( 0.00%) 868.29
http(c) 9673 ( 0.03%) 811228 ( 0.00%) 83.87
smtp 569 ( 0.00%) 223656 ( 0.00%) 393.07
imap 453 ( 0.00%) 53048 ( 0.00%) 117.10
ssh 3229 ( 0.01%) 267718 ( 0.00%) 82.91
dns 155 ( 0.00%) 42024 ( 0.00%) 271.12
bgp 106 ( 0.00%) 13526 ( 0.00%) 127.60
other 2682 ( 0.01%) 275903 ( 0.00%) 102.87
udp6 29992 ( 0.08%) 5913439 ( 0.02%) 197.17
dns 29531 ( 0.08%) 5832080 ( 0.02%) 197.49
other 461 ( 0.00%) 81359 ( 0.00%) 176.48
icmp6 7100 ( 0.02%) 859496 ( 0.00%) 121.06
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 90 ( 0.00%) 81926 ( 0.00%) 910.29
tcpdump file: 201004130000.dump.gz (934.65 MB)