Traffic Trace Info
DumpFile: 201004131430.dump
FileSize: 2367.72MB
Id: 201004131430
StartTime: Tue Apr 13 14:30:01 2010
EndTime: Tue Apr 13 14:45:01 2010
TotalTime: 900.03 seconds
TotalCapSize: 1851.82MB CapLen: 96 bytes
# of packets: 33809246 (20689.02MB)
AvgRate: 192.82Mbps stddev:17.65M
IP flow (unique src/dst pair) Information
# of flows: 925646 (avg. 36.53 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.5% 1.3% 1.1% 1.1% 0.9% 0.8% 0.8% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 508989
Top 10 bandwidth usage (bytes/total in %):
19.1% 8.2% 4.7% 4.3% 3.7% 3.5% 2.6% 2.5% 2.2% 1.8%
# of IPv6 addresses: 1008
Top 10 bandwidth usage (bytes/total in %):
23.8% 10.0% 5.9% 5.2% 5.1% 5.0% 4.7% 4.3% 3.5% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004131430.pktlen.png)
detailed numbers
[ 32- 63]: 5484072
[ 64- 127]: 9260122
[ 128- 255]: 3100932
[ 256- 511]: 1860431
[ 512- 1023]: 920063
[ 1024- 2047]: 13183626
Protocol Breakdown
![[protocol breakdown chart]](201004131430.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 33809246 (100.00%) 21694006377 (100.00%) 641.66
ip 33760332 ( 99.86%) 21684806448 ( 99.96%) 642.32
tcp 20652773 ( 61.09%) 14415077199 ( 66.45%) 697.97
http(s) 8321888 ( 24.61%) 11023509061 ( 50.81%) 1324.64
http(c) 6092636 ( 18.02%) 808380107 ( 3.73%) 132.68
squid 259687 ( 0.77%) 80950318 ( 0.37%) 311.72
smtp 294496 ( 0.87%) 138314024 ( 0.64%) 469.66
ftp 28618 ( 0.08%) 6487016 ( 0.03%) 226.68
pop3 29626 ( 0.09%) 9240689 ( 0.04%) 311.91
imap 4164 ( 0.01%) 2723014 ( 0.01%) 653.94
telnet 711 ( 0.00%) 85193 ( 0.00%) 119.82
ssh 1619955 ( 4.79%) 197843728 ( 0.91%) 122.13
dns 56010 ( 0.17%) 3870968 ( 0.02%) 69.11
bgp 158 ( 0.00%) 49447 ( 0.00%) 312.96
napster 67 ( 0.00%) 4987 ( 0.00%) 74.43
realaud 39 ( 0.00%) 3902 ( 0.00%) 100.05
rtsp 72610 ( 0.21%) 4848842 ( 0.02%) 66.78
icecast 1233 ( 0.00%) 140834 ( 0.00%) 114.22
hotline 66 ( 0.00%) 58719 ( 0.00%) 889.68
other 3870804 ( 11.45%) 2138566050 ( 9.86%) 552.49
udp 9308646 ( 27.53%) 5415499702 ( 24.96%) 581.77
dns 697981 ( 2.06%) 115752353 ( 0.53%) 165.84
rip 2 ( 0.00%) 150 ( 0.00%) 75.00
realaud 36 ( 0.00%) 4968 ( 0.00%) 138.00
halflif 57 ( 0.00%) 8284 ( 0.00%) 145.33
starcra 285 ( 0.00%) 26820 ( 0.00%) 94.11
everque 178075 ( 0.53%) 48588420 ( 0.22%) 272.85
unreal 105 ( 0.00%) 18882 ( 0.00%) 179.83
quake 28 ( 0.00%) 3775 ( 0.00%) 134.82
cuseeme 11 ( 0.00%) 1687 ( 0.00%) 153.36
other 8431736 ( 24.94%) 5250910259 ( 24.20%) 622.76
icmp 593469 ( 1.76%) 49799337 ( 0.23%) 83.91
ipip 377 ( 0.00%) 45984 ( 0.00%) 121.97
ipsec 1414 ( 0.00%) 465988 ( 0.00%) 329.55
ip6 3072052 ( 9.09%) 1784587162 ( 8.23%) 580.91
other 131601 ( 0.39%) 19331076 ( 0.09%) 146.89
frag 1651 ( 0.00%) 1674515 ( 0.01%) 1014.24
ip6 48912 ( 0.14%) 9199809 ( 0.04%) 188.09
tcp6 12109 ( 0.04%) 2388686 ( 0.01%) 197.27
http(s) 1145 ( 0.00%) 1057824 ( 0.00%) 923.86
http(c) 3141 ( 0.01%) 339043 ( 0.00%) 107.94
smtp 310 ( 0.00%) 124745 ( 0.00%) 402.40
ftp 1477 ( 0.00%) 149259 ( 0.00%) 101.06
imap 390 ( 0.00%) 45731 ( 0.00%) 117.26
ssh 1997 ( 0.01%) 261406 ( 0.00%) 130.90
dns 109 ( 0.00%) 42594 ( 0.00%) 390.77
bgp 92 ( 0.00%) 11002 ( 0.00%) 119.59
other 3448 ( 0.01%) 357082 ( 0.00%) 103.56
udp6 30446 ( 0.09%) 5985864 ( 0.03%) 196.61
dns 30141 ( 0.09%) 5935210 ( 0.03%) 196.91
other 305 ( 0.00%) 50654 ( 0.00%) 166.08
icmp6 6267 ( 0.02%) 768252 ( 0.00%) 122.59
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 60 ( 0.00%) 52927 ( 0.00%) 882.12
tcpdump file: 201004131430.dump.gz (871.53 MB)