Traffic Trace Info
DumpFile: 201004130600.dump
FileSize: 1841.21MB
Id: 201004130600
StartTime: Tue Apr 13 06:00:01 2010
EndTime: Tue Apr 13 06:15:00 2010
TotalTime: 899.61 seconds
TotalCapSize: 1441.54MB CapLen: 96 bytes
# of packets: 26192084 (16186.26MB)
AvgRate: 150.94Mbps stddev:11.91M
IP flow (unique src/dst pair) Information
# of flows: 1088971 (avg. 24.05 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.6% 1.2% 0.7% 0.7% 0.7% 0.6% 0.6% 0.6% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 621193
Top 10 bandwidth usage (bytes/total in %):
23.9% 9.4% 7.5% 6.1% 5.6% 5.2% 3.3% 2.7% 2.5% 2.5%
# of IPv6 addresses: 867
Top 10 bandwidth usage (bytes/total in %):
26.8% 9.4% 8.5% 7.5% 7.1% 6.8% 6.2% 6.0% 5.7% 5.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004130600.pktlen.png)
detailed numbers
[ 32- 63]: 3784985
[ 64- 127]: 7383942
[ 128- 255]: 2388208
[ 256- 511]: 1729051
[ 512- 1023]: 673342
[ 1024- 2047]: 10232556
Protocol Breakdown
![[protocol breakdown chart]](201004130600.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 26192084 (100.00%) 16972526828 (100.00%) 648.00
ip 26135767 ( 99.78%) 16964339104 ( 99.95%) 649.09
tcp 14815150 ( 56.56%) 10899055170 ( 64.22%) 735.67
http(s) 6469628 ( 24.70%) 8948416521 ( 52.72%) 1383.14
http(c) 3295227 ( 12.58%) 339621228 ( 2.00%) 103.06
squid 268850 ( 1.03%) 88335550 ( 0.52%) 328.57
smtp 326858 ( 1.25%) 80467523 ( 0.47%) 246.18
ftp 12593 ( 0.05%) 1196999 ( 0.01%) 95.05
pop3 6909 ( 0.03%) 4687452 ( 0.03%) 678.46
imap 1504 ( 0.01%) 724274 ( 0.00%) 481.57
telnet 1860 ( 0.01%) 159851 ( 0.00%) 85.94
ssh 1616873 ( 6.17%) 201954572 ( 1.19%) 124.90
dns 52356 ( 0.20%) 3602325 ( 0.02%) 68.80
bgp 148 ( 0.00%) 50360 ( 0.00%) 340.27
napster 11 ( 0.00%) 738 ( 0.00%) 67.09
rtsp 59 ( 0.00%) 4234 ( 0.00%) 71.76
icecast 622 ( 0.00%) 42584 ( 0.00%) 68.46
other 2761649 ( 10.54%) 1229790779 ( 7.25%) 445.31
udp 7651931 ( 29.21%) 4341802561 ( 25.58%) 567.41
dns 597111 ( 2.28%) 105425184 ( 0.62%) 176.56
realaud 39 ( 0.00%) 4510 ( 0.00%) 115.64
halflif 130 ( 0.00%) 17365 ( 0.00%) 133.58
starcra 287 ( 0.00%) 38406 ( 0.00%) 133.82
everque 369 ( 0.00%) 68241 ( 0.00%) 184.93
unreal 51 ( 0.00%) 5967 ( 0.00%) 117.00
quake 37 ( 0.00%) 3708 ( 0.00%) 100.22
cuseeme 7 ( 0.00%) 1211 ( 0.00%) 173.00
other 7053639 ( 26.93%) 4236126915 ( 24.96%) 600.56
icmp 767206 ( 2.93%) 119849754 ( 0.71%) 156.22
ipip 358 ( 0.00%) 44552 ( 0.00%) 124.45
ipsec 3842 ( 0.01%) 1578612 ( 0.01%) 410.88
ip6 2882604 ( 11.01%) 1597437404 ( 9.41%) 554.16
other 14676 ( 0.06%) 4571051 ( 0.03%) 311.46
frag 1795 ( 0.01%) 1866646 ( 0.01%) 1039.91
ip6 56317 ( 0.22%) 8187724 ( 0.05%) 145.39
tcp6 25657 ( 0.10%) 2736180 ( 0.02%) 106.64
http(s) 31 ( 0.00%) 9106 ( 0.00%) 293.74
http(c) 13280 ( 0.05%) 1169179 ( 0.01%) 88.04
squid 2 ( 0.00%) 148 ( 0.00%) 74.00
smtp 180 ( 0.00%) 74726 ( 0.00%) 415.14
ftp 3057 ( 0.01%) 298301 ( 0.00%) 97.58
imap 248 ( 0.00%) 31735 ( 0.00%) 127.96
ssh 3011 ( 0.01%) 249670 ( 0.00%) 82.92
dns 99 ( 0.00%) 23359 ( 0.00%) 235.95
bgp 111 ( 0.00%) 14571 ( 0.00%) 131.27
icecast 1 ( 0.00%) 74 ( 0.00%) 74.00
other 5637 ( 0.02%) 865311 ( 0.01%) 153.51
udp6 24764 ( 0.09%) 4717305 ( 0.03%) 190.49
dns 23624 ( 0.09%) 4414283 ( 0.03%) 186.86
other 1140 ( 0.00%) 303022 ( 0.00%) 265.81
icmp6 5833 ( 0.02%) 702375 ( 0.00%) 120.41
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 32 ( 0.00%) 27648 ( 0.00%) 864.00
tcpdump file: 201004130600.dump.gz (684.29 MB)