Traffic Trace Info
DumpFile: 201004131015.dump
FileSize: 2420.72MB
Id: 201004131015
StartTime: Tue Apr 13 10:15:01 2010
EndTime: Tue Apr 13 10:30:00 2010
TotalTime: 899.29 seconds
TotalCapSize: 1888.70MB CapLen: 96 bytes
# of packets: 34862474 (20463.30MB)
AvgRate: 190.88Mbps stddev:16.82M
IP flow (unique src/dst pair) Information
# of flows: 884105 (avg. 39.43 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.9% 2.2% 2.0% 1.8% 1.6% 1.6% 1.1% 1.0% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 489642
Top 10 bandwidth usage (bytes/total in %):
17.7% 8.5% 6.5% 4.1% 3.2% 3.2% 3.1% 2.9% 2.6% 2.6%
# of IPv6 addresses: 960
Top 10 bandwidth usage (bytes/total in %):
23.7% 14.8% 14.8% 8.3% 6.0% 5.2% 5.1% 5.0% 4.9% 4.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004131015.pktlen.png)
detailed numbers
[ 32- 63]: 5647945
[ 64- 127]: 9727523
[ 128- 255]: 3738071
[ 256- 511]: 2033038
[ 512- 1023]: 982047
[ 1024- 2047]: 12733850
Protocol Breakdown
![[protocol breakdown chart]](201004131015.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 34862474 (100.00%) 21457323846 (100.00%) 615.48
ip 34812045 ( 99.86%) 21448105206 ( 99.96%) 616.11
tcp 20016478 ( 57.42%) 14441801129 ( 67.30%) 721.50
http(s) 8308136 ( 23.83%) 11283305375 ( 52.58%) 1358.10
http(c) 5501370 ( 15.78%) 681399628 ( 3.18%) 123.86
squid 210195 ( 0.60%) 80140063 ( 0.37%) 381.27
smtp 271025 ( 0.78%) 80727213 ( 0.38%) 297.86
ftp 21329 ( 0.06%) 2523980 ( 0.01%) 118.34
pop3 22053 ( 0.06%) 9415289 ( 0.04%) 426.94
imap 3473 ( 0.01%) 1047233 ( 0.00%) 301.54
telnet 547 ( 0.00%) 61221 ( 0.00%) 111.92
ssh 1623885 ( 4.66%) 204220748 ( 0.95%) 125.76
dns 56128 ( 0.16%) 3886308 ( 0.02%) 69.24
bgp 139 ( 0.00%) 34276 ( 0.00%) 246.59
napster 13 ( 0.00%) 1654 ( 0.00%) 127.23
realaud 320 ( 0.00%) 31304 ( 0.00%) 97.83
rtsp 146269 ( 0.42%) 56235934 ( 0.26%) 384.47
icecast 6881 ( 0.02%) 1013015 ( 0.00%) 147.22
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 3844709 ( 11.03%) 2037757522 ( 9.50%) 530.02
udp 9923469 ( 28.46%) 4929502458 ( 22.97%) 496.75
dns 629737 ( 1.81%) 108063944 ( 0.50%) 171.60
realaud 62 ( 0.00%) 5907 ( 0.00%) 95.27
halflif 144 ( 0.00%) 19842 ( 0.00%) 137.79
starcra 279 ( 0.00%) 26022 ( 0.00%) 93.27
everque 678 ( 0.00%) 140912 ( 0.00%) 207.83
unreal 116 ( 0.00%) 19499 ( 0.00%) 168.09
quake 30 ( 0.00%) 2614 ( 0.00%) 87.13
cuseeme 5 ( 0.00%) 510 ( 0.00%) 102.00
other 9291972 ( 26.65%) 4820955042 ( 22.47%) 518.83
icmp 1425308 ( 4.09%) 128911924 ( 0.60%) 90.44
ipip 319 ( 0.00%) 37266 ( 0.00%) 116.82
ipsec 132189 ( 0.38%) 80706314 ( 0.38%) 610.54
ip6 3112614 ( 8.93%) 1845962552 ( 8.60%) 593.06
other 201668 ( 0.58%) 21183563 ( 0.10%) 105.04
frag 2376 ( 0.01%) 2461345 ( 0.01%) 1035.92
ip6 50429 ( 0.14%) 9218640 ( 0.04%) 182.80
tcp6 16189 ( 0.05%) 2875250 ( 0.01%) 177.61
http(s) 116 ( 0.00%) 80534 ( 0.00%) 694.26
http(c) 4116 ( 0.01%) 374315 ( 0.00%) 90.94
smtp 176 ( 0.00%) 81343 ( 0.00%) 462.18
ftp 2368 ( 0.01%) 243874 ( 0.00%) 102.99
imap 68 ( 0.00%) 9103 ( 0.00%) 133.87
ssh 2989 ( 0.01%) 248378 ( 0.00%) 83.10
dns 126 ( 0.00%) 35936 ( 0.00%) 285.21
bgp 114 ( 0.00%) 15864 ( 0.00%) 139.16
other 6116 ( 0.02%) 1785903 ( 0.01%) 292.01
udp6 27949 ( 0.08%) 5515690 ( 0.03%) 197.35
dns 27697 ( 0.08%) 5476023 ( 0.03%) 197.71
other 252 ( 0.00%) 39667 ( 0.00%) 157.41
icmp6 6181 ( 0.02%) 750619 ( 0.00%) 121.44
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 80 ( 0.00%) 73001 ( 0.00%) 912.51
tcpdump file: 201004131015.dump.gz (887.57 MB)