Traffic Trace Info
DumpFile: 201004130930.dump
FileSize: 2175.20MB
Id: 201004130930
StartTime: Tue Apr 13 09:30:01 2010
EndTime: Tue Apr 13 09:45:01 2010
TotalTime: 899.82 seconds
TotalCapSize: 1703.76MB CapLen: 96 bytes
# of packets: 30896049 (17896.07MB)
AvgRate: 166.86Mbps stddev:14.45M
IP flow (unique src/dst pair) Information
# of flows: 962008 (avg. 32.12 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.6% 1.9% 1.4% 1.3% 0.9% 0.8% 0.8% 0.8% 0.8% 0.6%
IP address Information
# of IPv4 addresses: 547785
Top 10 bandwidth usage (bytes/total in %):
20.0% 11.5% 4.3% 4.1% 3.7% 3.3% 3.1% 3.0% 2.6% 2.6%
# of IPv6 addresses: 952
Top 10 bandwidth usage (bytes/total in %):
30.1% 9.3% 8.1% 6.6% 5.5% 4.9% 4.7% 4.5% 4.1% 3.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004130930.pktlen.png)
detailed numbers
[ 32- 63]: 4332856
[ 64- 127]: 9358353
[ 128- 255]: 3191372
[ 256- 511]: 1970902
[ 512- 1023]: 972676
[ 1024- 2047]: 11069890
Protocol Breakdown
![[protocol breakdown chart]](201004130930.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 30896049 (100.00%) 18765385963 (100.00%) 607.37
ip 30849819 ( 99.85%) 18758103063 ( 99.96%) 608.05
tcp 16700534 ( 54.05%) 11651111093 ( 62.09%) 697.65
http(s) 6645662 ( 21.51%) 8968506648 ( 47.79%) 1349.53
http(c) 4513693 ( 14.61%) 597222651 ( 3.18%) 132.31
squid 218278 ( 0.71%) 58919370 ( 0.31%) 269.93
smtp 271508 ( 0.88%) 75868755 ( 0.40%) 279.43
ftp 11714 ( 0.04%) 1131382 ( 0.01%) 96.58
pop3 20010 ( 0.06%) 12822128 ( 0.07%) 640.79
imap 2531 ( 0.01%) 1428895 ( 0.01%) 564.56
telnet 588 ( 0.00%) 77394 ( 0.00%) 131.62
ssh 1365282 ( 4.42%) 173605814 ( 0.93%) 127.16
dns 58648 ( 0.19%) 4018256 ( 0.02%) 68.51
bgp 167 ( 0.00%) 66393 ( 0.00%) 397.56
napster 34 ( 0.00%) 3902 ( 0.00%) 114.76
realaud 6 ( 0.00%) 366 ( 0.00%) 61.00
rtsp 131063 ( 0.42%) 49165087 ( 0.26%) 375.13
icecast 4943 ( 0.02%) 382199 ( 0.00%) 77.32
other 3456406 ( 11.19%) 1707891793 ( 9.10%) 494.12
udp 9227192 ( 29.87%) 4795892269 ( 25.56%) 519.76
dns 617052 ( 2.00%) 106831589 ( 0.57%) 173.13
realaud 42 ( 0.00%) 3890 ( 0.00%) 92.62
halflif 178 ( 0.00%) 28747 ( 0.00%) 161.50
starcra 176 ( 0.00%) 16474 ( 0.00%) 93.60
everque 686 ( 0.00%) 129551 ( 0.00%) 188.85
unreal 91 ( 0.00%) 14391 ( 0.00%) 158.14
quake 51 ( 0.00%) 4287 ( 0.00%) 84.06
cuseeme 4 ( 0.00%) 338 ( 0.00%) 84.50
other 8608587 ( 27.86%) 4688702225 ( 24.99%) 544.65
icmp 1137469 ( 3.68%) 111225821 ( 0.59%) 97.78
ipip 370 ( 0.00%) 45252 ( 0.00%) 122.30
ipsec 28829 ( 0.09%) 5897562 ( 0.03%) 204.57
ip6 3585374 ( 11.60%) 2176049748 ( 11.60%) 606.92
other 170051 ( 0.55%) 17881318 ( 0.10%) 105.15
frag 2096 ( 0.01%) 2070463 ( 0.01%) 987.82
ip6 46230 ( 0.15%) 7282900 ( 0.04%) 157.54
tcp6 12858 ( 0.04%) 1286999 ( 0.01%) 100.09
http(s) 67 ( 0.00%) 33399 ( 0.00%) 498.49
http(c) 3908 ( 0.01%) 359639 ( 0.00%) 92.03
smtp 125 ( 0.00%) 37398 ( 0.00%) 299.18
ftp 1380 ( 0.00%) 139723 ( 0.00%) 101.25
imap 173 ( 0.00%) 22395 ( 0.00%) 129.45
ssh 3219 ( 0.01%) 266910 ( 0.00%) 82.92
dns 120 ( 0.00%) 38302 ( 0.00%) 319.18
bgp 106 ( 0.00%) 13751 ( 0.00%) 129.73
other 3760 ( 0.01%) 375482 ( 0.00%) 99.86
udp6 27087 ( 0.09%) 5223406 ( 0.03%) 192.84
dns 26835 ( 0.09%) 5185684 ( 0.03%) 193.24
other 252 ( 0.00%) 37722 ( 0.00%) 149.69
icmp6 6225 ( 0.02%) 742015 ( 0.00%) 119.20
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 30 ( 0.00%) 26400 ( 0.00%) 880.00
tcpdump file: 201004130930.dump.gz (789.33 MB)