Traffic Trace Info
DumpFile: 201004130700.dump
FileSize: 1922.84MB
Id: 201004130700
StartTime: Tue Apr 13 07:00:01 2010
EndTime: Tue Apr 13 07:15:01 2010
TotalTime: 900.26 seconds
TotalCapSize: 1507.14MB CapLen: 96 bytes
# of packets: 27241925 (17069.22MB)
AvgRate: 159.08Mbps stddev:15.39M
IP flow (unique src/dst pair) Information
# of flows: 1017084 (avg. 26.78 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.6% 1.6% 1.3% 1.2% 1.1% 1.1% 1.1% 1.1% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 569842
Top 10 bandwidth usage (bytes/total in %):
24.1% 10.7% 5.7% 4.9% 4.6% 4.5% 4.1% 3.1% 2.7% 2.6%
# of IPv6 addresses: 913
Top 10 bandwidth usage (bytes/total in %):
30.7% 8.9% 8.3% 6.7% 4.8% 4.7% 3.9% 3.5% 3.3% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004130700.pktlen.png)
detailed numbers
[ 32- 63]: 3843496
[ 64- 127]: 7774306
[ 128- 255]: 2399831
[ 256- 511]: 1669610
[ 512- 1023]: 691926
[ 1024- 2047]: 10862756
Protocol Breakdown
![[protocol breakdown chart]](201004130700.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 27241925 (100.00%) 17898374462 (100.00%) 657.02
ip 27197008 ( 99.84%) 17891231542 ( 99.96%) 657.84
tcp 15179774 ( 55.72%) 11204324181 ( 62.60%) 738.11
http(s) 6571869 ( 24.12%) 9176640912 ( 51.27%) 1396.35
http(c) 3679578 ( 13.51%) 365907055 ( 2.04%) 99.44
squid 223366 ( 0.82%) 58175354 ( 0.33%) 260.45
smtp 330923 ( 1.21%) 69365861 ( 0.39%) 209.61
ftp 9534 ( 0.03%) 906210 ( 0.01%) 95.05
pop3 18929 ( 0.07%) 15999664 ( 0.09%) 845.25
imap 2038 ( 0.01%) 1081969 ( 0.01%) 530.90
telnet 1198 ( 0.00%) 111974 ( 0.00%) 93.47
ssh 1483270 ( 5.44%) 193291397 ( 1.08%) 130.31
dns 58247 ( 0.21%) 3996078 ( 0.02%) 68.61
bgp 142 ( 0.00%) 46952 ( 0.00%) 330.65
napster 36 ( 0.00%) 7414 ( 0.00%) 205.94
realaud 11 ( 0.00%) 1447 ( 0.00%) 131.55
rtsp 156 ( 0.00%) 33938 ( 0.00%) 217.55
icecast 306 ( 0.00%) 19338 ( 0.00%) 63.20
other 2800170 ( 10.28%) 1318738360 ( 7.37%) 470.95
udp 7892774 ( 28.97%) 4619106464 ( 25.81%) 585.23
dns 612649 ( 2.25%) 110280423 ( 0.62%) 180.01
realaud 141 ( 0.00%) 10011 ( 0.00%) 71.00
halflif 107 ( 0.00%) 15428 ( 0.00%) 144.19
starcra 274 ( 0.00%) 35815 ( 0.00%) 130.71
everque 354 ( 0.00%) 70238 ( 0.00%) 198.41
unreal 103 ( 0.00%) 15886 ( 0.00%) 154.23
quake 41 ( 0.00%) 3622 ( 0.00%) 88.34
cuseeme 2 ( 0.00%) 192 ( 0.00%) 96.00
other 7278812 ( 26.72%) 4508517368 ( 25.19%) 619.40
icmp 754027 ( 2.77%) 118564182 ( 0.66%) 157.24
ipip 344 ( 0.00%) 40676 ( 0.00%) 118.24
ipsec 8658 ( 0.03%) 4752336 ( 0.03%) 548.90
ip6 3216197 ( 11.81%) 1929104122 ( 10.78%) 599.81
other 145234 ( 0.53%) 15339581 ( 0.09%) 105.62
frag 1718 ( 0.01%) 1775737 ( 0.01%) 1033.61
ip6 44917 ( 0.16%) 7142920 ( 0.04%) 159.02
tcp6 13883 ( 0.05%) 1476746 ( 0.01%) 106.37
http(s) 43 ( 0.00%) 31179 ( 0.00%) 725.09
http(c) 4921 ( 0.02%) 488213 ( 0.00%) 99.21
smtp 241 ( 0.00%) 100161 ( 0.00%) 415.61
ftp 1669 ( 0.01%) 168871 ( 0.00%) 101.18
imap 228 ( 0.00%) 27888 ( 0.00%) 122.32
ssh 3222 ( 0.01%) 267152 ( 0.00%) 82.91
dns 103 ( 0.00%) 38164 ( 0.00%) 370.52
bgp 129 ( 0.00%) 19705 ( 0.00%) 152.75
other 3327 ( 0.01%) 335413 ( 0.00%) 100.82
udp6 24532 ( 0.09%) 4837097 ( 0.03%) 197.17
dns 24231 ( 0.09%) 4779119 ( 0.03%) 197.23
other 301 ( 0.00%) 57978 ( 0.00%) 192.62
icmp6 6423 ( 0.02%) 779560 ( 0.00%) 121.37
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 48 ( 0.00%) 45301 ( 0.00%) 943.77
tcpdump file: 201004130700.dump.gz (698.41 MB)