Traffic Trace Info
DumpFile: 201004132115.dump
FileSize: 2173.01MB
Id: 201004132115
StartTime: Tue Apr 13 21:15:01 2010
EndTime: Tue Apr 13 21:30:00 2010
TotalTime: 899.17 seconds
TotalCapSize: 1693.19MB CapLen: 96 bytes
# of packets: 31444748 (19953.36MB)
AvgRate: 186.15Mbps stddev:16.05M
IP flow (unique src/dst pair) Information
# of flows: 1089373 (avg. 28.86 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.5% 1.1% 0.8% 0.8% 0.7% 0.7% 0.7% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 600462
Top 10 bandwidth usage (bytes/total in %):
14.0% 7.5% 7.1% 6.1% 5.4% 4.8% 3.5% 3.0% 2.8% 2.2%
# of IPv6 addresses: 1012
Top 10 bandwidth usage (bytes/total in %):
29.9% 29.9% 17.5% 7.0% 4.7% 3.9% 3.8% 3.7% 3.0% 2.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004132115.pktlen.png)
detailed numbers
[ 32- 63]: 5529738
[ 64- 127]: 8413541
[ 128- 255]: 2214765
[ 256- 511]: 1716754
[ 512- 1023]: 818884
[ 1024- 2047]: 12751066
Protocol Breakdown
![[protocol breakdown chart]](201004132115.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 31444748 (100.00%) 20922609190 (100.00%) 665.38
ip 31385204 ( 99.81%) 20910089514 ( 99.94%) 666.24
tcp 18873176 ( 60.02%) 15007377263 ( 71.73%) 795.17
http(s) 8924564 ( 28.38%) 12239639416 ( 58.50%) 1371.46
http(c) 5441110 ( 17.30%) 790248276 ( 3.78%) 145.24
squid 346489 ( 1.10%) 97801986 ( 0.47%) 282.27
smtp 340363 ( 1.08%) 86422656 ( 0.41%) 253.91
ftp 39957 ( 0.13%) 3315846 ( 0.02%) 82.99
pop3 12282 ( 0.04%) 7389858 ( 0.04%) 601.68
imap 2953 ( 0.01%) 1736537 ( 0.01%) 588.06
telnet 252 ( 0.00%) 37900 ( 0.00%) 150.40
ssh 124425 ( 0.40%) 18731907 ( 0.09%) 150.55
dns 55090 ( 0.18%) 3758587 ( 0.02%) 68.23
bgp 174 ( 0.00%) 64916 ( 0.00%) 373.08
napster 14 ( 0.00%) 1433 ( 0.00%) 102.36
realaud 10 ( 0.00%) 1699 ( 0.00%) 169.90
rtsp 102104 ( 0.32%) 7245918 ( 0.03%) 70.97
icecast 1831 ( 0.01%) 191919 ( 0.00%) 104.82
hotline 105 ( 0.00%) 9628 ( 0.00%) 91.70
other 3481448 ( 11.07%) 1750778481 ( 8.37%) 502.89
udp 8639001 ( 27.47%) 4229368012 ( 20.21%) 489.57
dns 978657 ( 3.11%) 209960288 ( 1.00%) 214.54
rip 1 ( 0.00%) 109 ( 0.00%) 109.00
realaud 1585 ( 0.01%) 102390 ( 0.00%) 64.60
halflif 84 ( 0.00%) 8782 ( 0.00%) 104.55
starcra 262 ( 0.00%) 26906 ( 0.00%) 102.69
everque 603 ( 0.00%) 132214 ( 0.00%) 219.26
unreal 122 ( 0.00%) 21394 ( 0.00%) 175.36
quake 67 ( 0.00%) 5610 ( 0.00%) 83.73
cuseeme 10 ( 0.00%) 1480 ( 0.00%) 148.00
other 7657509 ( 24.35%) 4019023283 ( 19.21%) 524.85
icmp 893618 ( 2.84%) 151341173 ( 0.72%) 169.36
ipip 339 ( 0.00%) 40792 ( 0.00%) 120.33
ipsec 1431 ( 0.00%) 473386 ( 0.00%) 330.81
ip6 2750943 ( 8.75%) 1490698705 ( 7.12%) 541.89
other 226696 ( 0.72%) 30790183 ( 0.15%) 135.82
frag 945 ( 0.00%) 1039819 ( 0.00%) 1100.34
ip6 59544 ( 0.19%) 12519676 ( 0.06%) 210.26
tcp6 20599 ( 0.07%) 5591463 ( 0.03%) 271.44
http(s) 53 ( 0.00%) 32203 ( 0.00%) 607.60
http(c) 4703 ( 0.01%) 427831 ( 0.00%) 90.97
smtp 374 ( 0.00%) 195657 ( 0.00%) 523.15
ftp 2715 ( 0.01%) 280322 ( 0.00%) 103.25
imap 247 ( 0.00%) 28474 ( 0.00%) 115.28
ssh 3314 ( 0.01%) 283696 ( 0.00%) 85.61
dns 146 ( 0.00%) 35210 ( 0.00%) 241.16
bgp 116 ( 0.00%) 16147 ( 0.00%) 139.20
other 8931 ( 0.03%) 4291923 ( 0.02%) 480.56
udp6 32433 ( 0.10%) 6112847 ( 0.03%) 188.48
dns 31718 ( 0.10%) 5986040 ( 0.03%) 188.73
other 715 ( 0.00%) 126807 ( 0.00%) 177.35
icmp6 6449 ( 0.02%) 783667 ( 0.00%) 121.52
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 33 ( 0.00%) 27619 ( 0.00%) 836.94
tcpdump file: 201004132115.dump.gz (820.05 MB)