Traffic Trace Info
DumpFile: 201004131100.dump
FileSize: 2369.04MB
Id: 201004131100
StartTime: Tue Apr 13 11:00:01 2010
EndTime: Tue Apr 13 11:15:01 2010
TotalTime: 900.08 seconds
TotalCapSize: 1847.19MB CapLen: 96 bytes
# of packets: 34196776 (20776.09MB)
AvgRate: 193.62Mbps stddev:14.83M
IP flow (unique src/dst pair) Information
# of flows: 878282 (avg. 38.94 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.5% 1.6% 1.2% 1.2% 1.1% 1.0% 0.8% 0.8% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 488400
Top 10 bandwidth usage (bytes/total in %):
19.5% 8.4% 8.1% 4.5% 3.8% 3.4% 3.2% 3.1% 2.7% 2.6%
# of IPv6 addresses: 1007
Top 10 bandwidth usage (bytes/total in %):
33.7% 33.7% 16.2% 6.9% 4.9% 4.4% 4.4% 3.8% 3.6% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004131100.pktlen.png)
detailed numbers
[ 32- 63]: 5314327
[ 64- 127]: 9407862
[ 128- 255]: 3462627
[ 256- 511]: 2015242
[ 512- 1023]: 934479
[ 1024- 2047]: 13062239
Protocol Breakdown
![[protocol breakdown chart]](201004131100.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 34196776 (100.00%) 21785312058 (100.00%) 637.06
ip 34141061 ( 99.84%) 21771787675 ( 99.94%) 637.70
tcp 19426518 ( 56.81%) 13964670791 ( 64.10%) 718.85
http(s) 7864386 ( 23.00%) 10613077356 ( 48.72%) 1349.51
http(c) 5656811 ( 16.54%) 835154140 ( 3.83%) 147.64
squid 193155 ( 0.56%) 60823842 ( 0.28%) 314.90
smtp 288789 ( 0.84%) 148451854 ( 0.68%) 514.05
ftp 22836 ( 0.07%) 6111512 ( 0.03%) 267.63
pop3 21191 ( 0.06%) 9627482 ( 0.04%) 454.32
imap 2465 ( 0.01%) 862068 ( 0.00%) 349.72
telnet 1191 ( 0.00%) 111796 ( 0.00%) 93.87
ssh 1919412 ( 5.61%) 227001366 ( 1.04%) 118.27
dns 67927 ( 0.20%) 8305500 ( 0.04%) 122.27
bgp 151 ( 0.00%) 44365 ( 0.00%) 293.81
napster 27 ( 0.00%) 2596 ( 0.00%) 96.15
realaud 19 ( 0.00%) 3762 ( 0.00%) 198.00
rtsp 138298 ( 0.40%) 49443354 ( 0.23%) 357.51
icecast 1566 ( 0.00%) 316809 ( 0.00%) 202.30
hotline 17 ( 0.00%) 1110 ( 0.00%) 65.29
other 3248274 ( 9.50%) 2005331699 ( 9.20%) 617.35
udp 10489774 ( 30.67%) 5868126684 ( 26.94%) 559.41
dns 641903 ( 1.88%) 108948706 ( 0.50%) 169.73
realaud 63 ( 0.00%) 7359 ( 0.00%) 116.81
halflif 113 ( 0.00%) 18098 ( 0.00%) 160.16
starcra 168 ( 0.00%) 16045 ( 0.00%) 95.51
everque 629 ( 0.00%) 130874 ( 0.00%) 208.07
unreal 132 ( 0.00%) 20935 ( 0.00%) 158.60
quake 199 ( 0.00%) 44607 ( 0.00%) 224.16
cuseeme 10 ( 0.00%) 1527 ( 0.00%) 152.70
other 9846201 ( 28.79%) 5758773641 ( 26.43%) 584.87
icmp 845149 ( 2.47%) 73909983 ( 0.34%) 87.45
ipip 348 ( 0.00%) 43869 ( 0.00%) 126.06
ipsec 4365 ( 0.01%) 1178582 ( 0.01%) 270.01
ip6 3209656 ( 9.39%) 1844217911 ( 8.47%) 574.58
other 165251 ( 0.48%) 19639855 ( 0.09%) 118.85
frag 1813 ( 0.01%) 1859470 ( 0.01%) 1025.63
ip6 55715 ( 0.16%) 13524383 ( 0.06%) 242.74
tcp6 19444 ( 0.06%) 6460758 ( 0.03%) 332.28
http(s) 336 ( 0.00%) 245533 ( 0.00%) 730.75
http(c) 4840 ( 0.01%) 511861 ( 0.00%) 105.76
smtp 227 ( 0.00%) 114920 ( 0.00%) 506.26
ftp 2525 ( 0.01%) 260629 ( 0.00%) 103.22
imap 293 ( 0.00%) 34787 ( 0.00%) 118.73
ssh 3324 ( 0.01%) 319112 ( 0.00%) 96.00
dns 173 ( 0.00%) 43316 ( 0.00%) 250.38
bgp 118 ( 0.00%) 18972 ( 0.00%) 160.78
other 7608 ( 0.02%) 4911628 ( 0.02%) 645.59
udp6 29745 ( 0.09%) 6197467 ( 0.03%) 208.35
dns 29572 ( 0.09%) 6171280 ( 0.03%) 208.69
realaud 1 ( 0.00%) 112 ( 0.00%) 112.00
other 172 ( 0.00%) 26075 ( 0.00%) 151.60
icmp6 6389 ( 0.02%) 773357 ( 0.00%) 121.05
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 107 ( 0.00%) 88721 ( 0.00%) 829.17
tcpdump file: 201004131100.dump.gz (867.10 MB)