Traffic Trace Info
DumpFile: 201004131315.dump
FileSize: 2372.97MB
Id: 201004131315
StartTime: Tue Apr 13 13:15:01 2010
EndTime: Tue Apr 13 13:30:01 2010
TotalTime: 900.25 seconds
TotalCapSize: 1852.94MB CapLen: 96 bytes
# of packets: 34080382 (21192.17MB)
AvgRate: 197.46Mbps stddev:18.90M
IP flow (unique src/dst pair) Information
# of flows: 975841 (avg. 34.92 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.6% 1.3% 1.1% 1.1% 1.1% 1.0% 0.8% 0.8% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 549601
Top 10 bandwidth usage (bytes/total in %):
18.9% 7.6% 6.2% 4.6% 3.5% 3.2% 2.8% 2.7% 2.5% 2.3%
# of IPv6 addresses: 1001
Top 10 bandwidth usage (bytes/total in %):
29.2% 29.2% 19.4% 6.3% 4.1% 3.8% 3.5% 3.0% 3.0% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004131315.pktlen.png)
detailed numbers
[ 32- 63]: 5793681
[ 64- 127]: 8747159
[ 128- 255]: 3217627
[ 256- 511]: 1680214
[ 512- 1023]: 1016630
[ 1024- 2047]: 13625071
Protocol Breakdown
![[protocol breakdown chart]](201004131315.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 34080382 (100.00%) 22221599104 (100.00%) 652.03
ip 34031329 ( 99.86%) 22210270409 ( 99.95%) 652.64
tcp 20515100 ( 60.20%) 14799589665 ( 66.60%) 721.40
http(s) 8237522 ( 24.17%) 10803187898 ( 48.62%) 1311.46
http(c) 6547330 ( 19.21%) 817303806 ( 3.68%) 124.83
squid 274599 ( 0.81%) 77256210 ( 0.35%) 281.34
smtp 265554 ( 0.78%) 113542557 ( 0.51%) 427.57
nntp 3 ( 0.00%) 198 ( 0.00%) 66.00
ftp 31610 ( 0.09%) 4615389 ( 0.02%) 146.01
pop3 19581 ( 0.06%) 7861586 ( 0.04%) 401.49
imap 3696 ( 0.01%) 1097045 ( 0.00%) 296.82
telnet 6273 ( 0.02%) 3746120 ( 0.02%) 597.18
ssh 823689 ( 2.42%) 110273051 ( 0.50%) 133.88
dns 57649 ( 0.17%) 3949536 ( 0.02%) 68.51
bgp 154 ( 0.00%) 55739 ( 0.00%) 361.94
napster 23 ( 0.00%) 2104 ( 0.00%) 91.48
realaud 52 ( 0.00%) 5360 ( 0.00%) 103.08
rtsp 94699 ( 0.28%) 11099074 ( 0.05%) 117.20
icecast 2296 ( 0.01%) 220503 ( 0.00%) 96.04
other 4150369 ( 12.18%) 2845373429 ( 12.80%) 685.57
udp 9959008 ( 29.22%) 5646724622 ( 25.41%) 567.00
dns 686814 ( 2.02%) 125235356 ( 0.56%) 182.34
realaud 30 ( 0.00%) 2931 ( 0.00%) 97.70
halflif 68 ( 0.00%) 7058 ( 0.00%) 103.79
starcra 242 ( 0.00%) 24699 ( 0.00%) 102.06
everque 766 ( 0.00%) 139910 ( 0.00%) 182.65
unreal 117 ( 0.00%) 19496 ( 0.00%) 166.63
quake 42 ( 0.00%) 4142 ( 0.00%) 98.62
cuseeme 3 ( 0.00%) 332 ( 0.00%) 110.67
other 9270512 ( 27.20%) 5521083470 ( 24.85%) 595.55
icmp 573871 ( 1.68%) 48864298 ( 0.22%) 85.15
ipip 317 ( 0.00%) 39858 ( 0.00%) 125.74
ipsec 1425 ( 0.00%) 467382 ( 0.00%) 327.99
ip6 2979352 ( 8.74%) 1713835352 ( 7.71%) 575.24
other 2256 ( 0.01%) 749232 ( 0.00%) 332.11
frag 11597 ( 0.03%) 13714280 ( 0.06%) 1182.57
ip6 49053 ( 0.14%) 11328695 ( 0.05%) 230.95
tcp6 14277 ( 0.04%) 4869877 ( 0.02%) 341.10
http(s) 2932 ( 0.01%) 3569621 ( 0.02%) 1217.47
http(c) 2875 ( 0.01%) 276728 ( 0.00%) 96.25
smtp 231 ( 0.00%) 61096 ( 0.00%) 264.48
ftp 1760 ( 0.01%) 179555 ( 0.00%) 102.02
imap 349 ( 0.00%) 39080 ( 0.00%) 111.98
ssh 2025 ( 0.01%) 274026 ( 0.00%) 135.32
dns 148 ( 0.00%) 50162 ( 0.00%) 338.93
bgp 106 ( 0.00%) 13973 ( 0.00%) 131.82
other 3851 ( 0.01%) 405636 ( 0.00%) 105.33
udp6 28559 ( 0.08%) 5668229 ( 0.03%) 198.47
dns 28211 ( 0.08%) 5613002 ( 0.03%) 198.97
other 348 ( 0.00%) 55227 ( 0.00%) 158.70
icmp6 6135 ( 0.02%) 744238 ( 0.00%) 121.31
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 52 ( 0.00%) 42271 ( 0.00%) 812.90
tcpdump file: 201004131315.dump.gz (861.35 MB)