Traffic Trace Info
DumpFile: 201004131900.dump
FileSize: 2398.69MB
Id: 201004131900
StartTime: Tue Apr 13 19:00:01 2010
EndTime: Tue Apr 13 19:15:01 2010
TotalTime: 900.23 seconds
TotalCapSize: 1874.37MB CapLen: 96 bytes
# of packets: 34359805 (22074.82MB)
AvgRate: 205.69Mbps stddev:22.20M
IP flow (unique src/dst pair) Information
# of flows: 1111844 (avg. 30.90 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.5% 1.2% 1.1% 0.6% 0.6% 0.6% 0.6% 0.6% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 590585
Top 10 bandwidth usage (bytes/total in %):
12.2% 7.1% 6.4% 5.2% 5.0% 4.9% 4.7% 4.0% 2.6% 2.6%
# of IPv6 addresses: 1118
Top 10 bandwidth usage (bytes/total in %):
20.5% 10.3% 7.6% 6.0% 5.1% 5.0% 4.9% 3.9% 3.8% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004131900.pktlen.png)
detailed numbers
[ 32- 63]: 6623090
[ 64- 127]: 8503622
[ 128- 255]: 2287056
[ 256- 511]: 1880046
[ 512- 1023]: 1020021
[ 1024- 2047]: 14045970
Protocol Breakdown
![[protocol breakdown chart]](201004131900.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 34359805 (100.00%) 23147122723 (100.00%) 673.67
ip 34304888 ( 99.84%) 23137343833 ( 99.96%) 674.46
tcp 22506388 ( 65.50%) 17577333198 ( 75.94%) 780.99
http(s) 10062183 ( 29.28%) 13772083430 ( 59.50%) 1368.70
http(c) 6465340 ( 18.82%) 920076635 ( 3.97%) 142.31
squid 301998 ( 0.88%) 88366128 ( 0.38%) 292.61
smtp 472828 ( 1.38%) 186263864 ( 0.80%) 393.94
ftp 18177 ( 0.05%) 2255408 ( 0.01%) 124.08
pop3 16305 ( 0.05%) 9757182 ( 0.04%) 598.42
imap 3922 ( 0.01%) 607501 ( 0.00%) 154.90
telnet 1190 ( 0.00%) 135461 ( 0.00%) 113.83
ssh 442293 ( 1.29%) 59455020 ( 0.26%) 134.42
dns 55455 ( 0.16%) 6299311 ( 0.03%) 113.59
bgp 152 ( 0.00%) 55218 ( 0.00%) 363.28
realaud 28 ( 0.00%) 2201 ( 0.00%) 78.61
rtsp 211341 ( 0.62%) 103753440 ( 0.45%) 490.93
icecast 2145 ( 0.01%) 143388 ( 0.00%) 66.85
hotline 2 ( 0.00%) 122 ( 0.00%) 61.00
other 4453028 ( 12.96%) 2428078829 ( 10.49%) 545.26
udp 7930257 ( 23.08%) 3789118489 ( 16.37%) 477.81
dns 919579 ( 2.68%) 172468534 ( 0.75%) 187.55
realaud 77 ( 0.00%) 13248 ( 0.00%) 172.05
halflif 72 ( 0.00%) 7752 ( 0.00%) 107.67
starcra 241 ( 0.00%) 23322 ( 0.00%) 96.77
everque 687 ( 0.00%) 118316 ( 0.00%) 172.22
unreal 161 ( 0.00%) 31769 ( 0.00%) 197.32
quake 43 ( 0.00%) 3659 ( 0.00%) 85.09
cuseeme 2 ( 0.00%) 165 ( 0.00%) 82.50
other 7008884 ( 20.40%) 3616220237 ( 15.62%) 515.95
icmp 839085 ( 2.44%) 102323373 ( 0.44%) 121.95
ipip 380 ( 0.00%) 46678 ( 0.00%) 122.84
ipsec 1468 ( 0.00%) 483800 ( 0.00%) 329.56
ip6 2948620 ( 8.58%) 1652393648 ( 7.14%) 560.40
other 78690 ( 0.23%) 15644647 ( 0.07%) 198.81
frag 2316 ( 0.01%) 2296192 ( 0.01%) 991.45
ip6 54917 ( 0.16%) 9778890 ( 0.04%) 178.07
tcp6 15979 ( 0.05%) 1782198 ( 0.01%) 111.53
http(s) 132 ( 0.00%) 98609 ( 0.00%) 747.04
http(c) 4437 ( 0.01%) 411030 ( 0.00%) 92.64
smtp 224 ( 0.00%) 115178 ( 0.00%) 514.19
ftp 2742 ( 0.01%) 283731 ( 0.00%) 103.48
imap 354 ( 0.00%) 41565 ( 0.00%) 117.42
ssh 3237 ( 0.01%) 273846 ( 0.00%) 84.60
dns 164 ( 0.00%) 52782 ( 0.00%) 321.84
bgp 119 ( 0.00%) 19217 ( 0.00%) 161.49
other 4570 ( 0.01%) 486240 ( 0.00%) 106.40
udp6 32468 ( 0.09%) 7120737 ( 0.03%) 219.32
dns 31015 ( 0.09%) 6836141 ( 0.03%) 220.41
other 1453 ( 0.00%) 284596 ( 0.00%) 195.87
icmp6 6342 ( 0.02%) 785343 ( 0.00%) 123.83
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 97 ( 0.00%) 86396 ( 0.00%) 890.68
tcpdump file: 201004131900.dump.gz (886.93 MB)