Traffic Trace Info
DumpFile: 201004130815.dump
FileSize: 1898.91MB
Id: 201004130815
StartTime: Tue Apr 13 08:15:01 2010
EndTime: Tue Apr 13 08:30:00 2010
TotalTime: 899.73 seconds
TotalCapSize: 1484.94MB CapLen: 96 bytes
# of packets: 27129172 (16543.44MB)
AvgRate: 154.20Mbps stddev:12.20M
IP flow (unique src/dst pair) Information
# of flows: 777389 (avg. 34.90 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.1% 2.1% 1.3% 1.1% 1.0% 0.9% 0.8% 0.7% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 439005
Top 10 bandwidth usage (bytes/total in %):
24.8% 11.5% 5.1% 4.3% 4.2% 4.1% 3.3% 2.3% 2.2% 2.2%
# of IPv6 addresses: 903
Top 10 bandwidth usage (bytes/total in %):
33.6% 8.6% 7.4% 6.5% 5.7% 5.5% 4.0% 3.6% 3.6% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004130815.pktlen.png)
detailed numbers
[ 32- 63]: 3864705
[ 64- 127]: 7671208
[ 128- 255]: 2643697
[ 256- 511]: 1716001
[ 512- 1023]: 791498
[ 1024- 2047]: 10442063
Protocol Breakdown
![[protocol breakdown chart]](201004130815.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 27129172 (100.00%) 17347049391 (100.00%) 639.42
ip 27086429 ( 99.84%) 17340515587 ( 99.96%) 640.19
tcp 14455731 ( 53.28%) 10319845922 ( 59.49%) 713.89
http(s) 5749910 ( 21.19%) 7867794024 ( 45.36%) 1368.33
http(c) 3553632 ( 13.10%) 420189257 ( 2.42%) 118.24
squid 271470 ( 1.00%) 86176910 ( 0.50%) 317.45
smtp 223756 ( 0.82%) 57167032 ( 0.33%) 255.49
ftp 11408 ( 0.04%) 1037699 ( 0.01%) 90.96
pop3 11821 ( 0.04%) 8130165 ( 0.05%) 687.77
imap 1394 ( 0.01%) 449713 ( 0.00%) 322.61
telnet 209 ( 0.00%) 33307 ( 0.00%) 159.36
ssh 1582212 ( 5.83%) 205817119 ( 1.19%) 130.08
dns 55897 ( 0.21%) 3846339 ( 0.02%) 68.81
bgp 139 ( 0.00%) 41281 ( 0.00%) 296.99
napster 841 ( 0.00%) 422494 ( 0.00%) 502.37
realaud 11 ( 0.00%) 1084 ( 0.00%) 98.55
rtsp 78 ( 0.00%) 6062 ( 0.00%) 77.72
icecast 19414 ( 0.07%) 14600226 ( 0.08%) 752.05
other 2973538 ( 10.96%) 1654133150 ( 9.54%) 556.28
udp 8564733 ( 31.57%) 4897293120 ( 28.23%) 571.80
dns 564049 ( 2.08%) 101588448 ( 0.59%) 180.11
rip 1 ( 0.00%) 109 ( 0.00%) 109.00
realaud 30 ( 0.00%) 3537 ( 0.00%) 117.90
halflif 144 ( 0.00%) 19707 ( 0.00%) 136.85
starcra 343 ( 0.00%) 46889 ( 0.00%) 136.70
everque 482 ( 0.00%) 83440 ( 0.00%) 173.11
unreal 82 ( 0.00%) 14275 ( 0.00%) 174.09
quake 23 ( 0.00%) 2742 ( 0.00%) 119.22
cuseeme 3 ( 0.00%) 502 ( 0.00%) 167.33
other 7999302 ( 29.49%) 4795408857 ( 27.64%) 599.48
icmp 470998 ( 1.74%) 88005268 ( 0.51%) 186.85
ipip 310 ( 0.00%) 38898 ( 0.00%) 125.48
ipsec 3319 ( 0.01%) 1349894 ( 0.01%) 406.72
ip6 3407438 ( 12.56%) 2014671302 ( 11.61%) 591.26
other 183900 ( 0.68%) 19311183 ( 0.11%) 105.01
frag 1486 ( 0.01%) 1499281 ( 0.01%) 1008.94
ip6 42743 ( 0.16%) 6533804 ( 0.04%) 152.86
tcp6 12884 ( 0.05%) 1284947 ( 0.01%) 99.73
http(s) 43 ( 0.00%) 22457 ( 0.00%) 522.26
http(c) 3882 ( 0.01%) 353746 ( 0.00%) 91.12
smtp 101 ( 0.00%) 58896 ( 0.00%) 583.13
ftp 1746 ( 0.01%) 177028 ( 0.00%) 101.39
imap 193 ( 0.00%) 23231 ( 0.00%) 120.37
ssh 3032 ( 0.01%) 251792 ( 0.00%) 83.04
dns 82 ( 0.00%) 20622 ( 0.00%) 251.49
bgp 117 ( 0.00%) 15380 ( 0.00%) 131.45
other 3688 ( 0.01%) 361795 ( 0.00%) 98.10
udp6 23677 ( 0.09%) 4471834 ( 0.03%) 188.87
dns 23409 ( 0.09%) 4426461 ( 0.03%) 189.09
other 268 ( 0.00%) 45373 ( 0.00%) 169.30
icmp6 6108 ( 0.02%) 735654 ( 0.00%) 120.44
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 44 ( 0.00%) 37289 ( 0.00%) 847.48
tcpdump file: 201004130815.dump.gz (696.47 MB)