Traffic Trace Info
DumpFile: 201004132245.dump
FileSize: 2172.28MB
Id: 201004132245
StartTime: Tue Apr 13 22:45:00 2010
EndTime: Tue Apr 13 23:00:01 2010
TotalTime: 900.20 seconds
TotalCapSize: 1692.08MB CapLen: 96 bytes
# of packets: 31469674 (20034.79MB)
AvgRate: 186.70Mbps stddev:13.18M
IP flow (unique src/dst pair) Information
# of flows: 1162366 (avg. 27.07 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.0% 2.3% 1.2% 0.9% 0.7% 0.6% 0.5% 0.5% 0.5% 0.4%
IP address Information
# of IPv4 addresses: 642683
Top 10 bandwidth usage (bytes/total in %):
15.0% 8.1% 6.7% 6.4% 6.1% 5.7% 4.2% 3.9% 3.5% 3.1%
# of IPv6 addresses: 1001
Top 10 bandwidth usage (bytes/total in %):
25.4% 8.6% 5.6% 5.6% 5.5% 5.1% 3.9% 3.6% 3.5% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004132245.pktlen.png)
detailed numbers
[ 32- 63]: 5373591
[ 64- 127]: 8387062
[ 128- 255]: 2365212
[ 256- 511]: 1759267
[ 512- 1023]: 817740
[ 1024- 2047]: 12766802
Protocol Breakdown
![[protocol breakdown chart]](201004132245.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 31469674 (100.00%) 21008002684 (100.00%) 667.56
ip 31417328 ( 99.83%) 20999368789 ( 99.96%) 668.40
tcp 18816409 ( 59.79%) 15127405805 ( 72.01%) 803.95
http(s) 8911699 ( 28.32%) 12263492899 ( 58.38%) 1376.11
http(c) 5009849 ( 15.92%) 573761411 ( 2.73%) 114.53
squid 312618 ( 0.99%) 91165466 ( 0.43%) 291.62
smtp 365651 ( 1.16%) 90315843 ( 0.43%) 247.00
ftp 100650 ( 0.32%) 61003289 ( 0.29%) 606.09
pop3 12665 ( 0.04%) 9779675 ( 0.05%) 772.18
imap 3507 ( 0.01%) 2097977 ( 0.01%) 598.23
telnet 215 ( 0.00%) 33715 ( 0.00%) 156.81
ssh 230503 ( 0.73%) 33354508 ( 0.16%) 144.70
dns 55723 ( 0.18%) 3842279 ( 0.02%) 68.95
bgp 152 ( 0.00%) 60513 ( 0.00%) 398.11
napster 2 ( 0.00%) 120 ( 0.00%) 60.00
realaud 36 ( 0.00%) 2890 ( 0.00%) 80.28
rtsp 506 ( 0.00%) 128601 ( 0.00%) 254.15
icecast 12147 ( 0.04%) 11486604 ( 0.05%) 945.63
hotline 12 ( 0.00%) 1486 ( 0.00%) 123.83
other 3800473 ( 12.08%) 1986878455 ( 9.46%) 522.80
udp 8599368 ( 27.33%) 4180742975 ( 19.90%) 486.17
dns 750976 ( 2.39%) 126543239 ( 0.60%) 168.51
rip 1 ( 0.00%) 109 ( 0.00%) 109.00
realaud 30 ( 0.00%) 4169 ( 0.00%) 138.97
halflif 150 ( 0.00%) 12974 ( 0.00%) 86.49
starcra 252 ( 0.00%) 25389 ( 0.00%) 100.75
everque 409 ( 0.00%) 79916 ( 0.00%) 195.39
unreal 111 ( 0.00%) 16971 ( 0.00%) 152.89
quake 42 ( 0.00%) 3534 ( 0.00%) 84.14
cuseeme 1 ( 0.00%) 97 ( 0.00%) 97.00
other 7847292 ( 24.94%) 4053967758 ( 19.30%) 516.61
icmp 921530 ( 2.93%) 152368400 ( 0.73%) 165.34
ipip 327 ( 0.00%) 41714 ( 0.00%) 127.57
ipsec 3471 ( 0.01%) 3322762 ( 0.02%) 957.29
ip6 2636426 ( 8.38%) 1426526349 ( 6.79%) 541.08
other 439797 ( 1.40%) 108960784 ( 0.52%) 247.75
frag 807 ( 0.00%) 877505 ( 0.00%) 1087.37
ip6 52346 ( 0.17%) 8633895 ( 0.04%) 164.94
tcp6 13713 ( 0.04%) 1673597 ( 0.01%) 122.04
http(s) 161 ( 0.00%) 148881 ( 0.00%) 924.73
http(c) 3795 ( 0.01%) 361850 ( 0.00%) 95.35
smtp 306 ( 0.00%) 146981 ( 0.00%) 480.33
ftp 2702 ( 0.01%) 281724 ( 0.00%) 104.26
imap 251 ( 0.00%) 28961 ( 0.00%) 115.38
ssh 1792 ( 0.01%) 158672 ( 0.00%) 88.54
dns 113 ( 0.00%) 35299 ( 0.00%) 312.38
bgp 110 ( 0.00%) 14734 ( 0.00%) 133.95
other 4483 ( 0.01%) 496495 ( 0.00%) 110.75
udp6 31338 ( 0.10%) 6008800 ( 0.03%) 191.74
dns 30812 ( 0.10%) 5918335 ( 0.03%) 192.08
other 526 ( 0.00%) 90465 ( 0.00%) 171.99
icmp6 7205 ( 0.02%) 896830 ( 0.00%) 124.47
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 60 ( 0.00%) 50588 ( 0.00%) 843.13
tcpdump file: 201004132245.dump.gz (808.68 MB)