Traffic Trace Info
DumpFile: 201004132300.dump
FileSize: 2202.48MB
Id: 201004132300
StartTime: Tue Apr 13 23:00:01 2010
EndTime: Tue Apr 13 23:15:01 2010
TotalTime: 900.58 seconds
TotalCapSize: 1716.59MB CapLen: 96 bytes
# of packets: 31842452 (20129.86MB)
AvgRate: 187.55Mbps stddev:15.91M
IP flow (unique src/dst pair) Information
# of flows: 1214933 (avg. 26.21 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.3% 3.1% 1.2% 0.8% 0.8% 0.8% 0.7% 0.5% 0.5% 0.4%
IP address Information
# of IPv4 addresses: 678124
Top 10 bandwidth usage (bytes/total in %):
14.1% 7.9% 6.8% 6.5% 6.2% 6.1% 5.8% 3.5% 3.4% 3.3%
# of IPv6 addresses: 1059
Top 10 bandwidth usage (bytes/total in %):
24.5% 10.6% 6.0% 5.4% 5.3% 4.5% 4.4% 4.2% 3.5% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004132300.pktlen.png)
detailed numbers
[ 32- 63]: 5910639
[ 64- 127]: 8327300
[ 128- 255]: 2321288
[ 256- 511]: 1703819
[ 512- 1023]: 778265
[ 1024- 2047]: 12801141
Protocol Breakdown
![[protocol breakdown chart]](201004132300.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 31842452 (100.00%) 21107690174 (100.00%) 662.88
ip 31787022 ( 99.83%) 21098722672 ( 99.96%) 663.75
tcp 19742335 ( 62.00%) 15699000226 ( 74.38%) 795.19
http(s) 9469625 ( 29.74%) 13012334228 ( 61.65%) 1374.11
http(c) 5464701 ( 17.16%) 613211408 ( 2.91%) 112.21
squid 301394 ( 0.95%) 87018085 ( 0.41%) 288.72
smtp 451848 ( 1.42%) 110471985 ( 0.52%) 244.49
nntp 1 ( 0.00%) 62 ( 0.00%) 62.00
ftp 33858 ( 0.11%) 4122955 ( 0.02%) 121.77
pop3 45537 ( 0.14%) 49060913 ( 0.23%) 1077.39
imap 2798 ( 0.01%) 1682806 ( 0.01%) 601.43
telnet 638 ( 0.00%) 78016 ( 0.00%) 122.28
ssh 196794 ( 0.62%) 27843782 ( 0.13%) 141.49
dns 54022 ( 0.17%) 3679617 ( 0.02%) 68.11
bgp 150 ( 0.00%) 64142 ( 0.00%) 427.61
napster 73 ( 0.00%) 5475 ( 0.00%) 75.00
realaud 41 ( 0.00%) 7077 ( 0.00%) 172.61
rtsp 112 ( 0.00%) 18611 ( 0.00%) 166.17
icecast 2434 ( 0.01%) 2011595 ( 0.01%) 826.46
hotline 8 ( 0.00%) 525 ( 0.00%) 65.62
other 3718301 ( 11.68%) 1787388944 ( 8.47%) 480.70
udp 8082318 ( 25.38%) 3710109154 ( 17.58%) 459.04
dns 793833 ( 2.49%) 135377047 ( 0.64%) 170.54
realaud 20 ( 0.00%) 2115 ( 0.00%) 105.75
halflif 96 ( 0.00%) 8398 ( 0.00%) 87.48
starcra 218 ( 0.00%) 23506 ( 0.00%) 107.83
everque 485 ( 0.00%) 84952 ( 0.00%) 175.16
unreal 97 ( 0.00%) 17294 ( 0.00%) 178.29
quake 26 ( 0.00%) 2189 ( 0.00%) 84.19
cuseeme 4 ( 0.00%) 319 ( 0.00%) 79.75
other 7287444 ( 22.89%) 3574521195 ( 16.93%) 490.50
icmp 935903 ( 2.94%) 164665600 ( 0.78%) 175.94
ipip 407 ( 0.00%) 46458 ( 0.00%) 114.15
ipsec 1554 ( 0.00%) 486756 ( 0.00%) 313.23
ip6 2653669 ( 8.33%) 1453959310 ( 6.89%) 547.91
other 370836 ( 1.16%) 70455168 ( 0.33%) 189.99
frag 3155 ( 0.01%) 2834628 ( 0.01%) 898.46
ip6 55430 ( 0.17%) 8967502 ( 0.04%) 161.78
tcp6 18468 ( 0.06%) 2126076 ( 0.01%) 115.12
http(s) 120 ( 0.00%) 98106 ( 0.00%) 817.55
http(c) 7984 ( 0.03%) 683476 ( 0.00%) 85.61
smtp 273 ( 0.00%) 77392 ( 0.00%) 283.49
ftp 2721 ( 0.01%) 283701 ( 0.00%) 104.26
imap 397 ( 0.00%) 46247 ( 0.00%) 116.49
ssh 1655 ( 0.01%) 146422 ( 0.00%) 88.47
dns 184 ( 0.00%) 60722 ( 0.00%) 330.01
bgp 120 ( 0.00%) 17844 ( 0.00%) 148.70
other 5014 ( 0.02%) 712166 ( 0.00%) 142.04
udp6 30524 ( 0.10%) 6000666 ( 0.03%) 196.59
dns 29944 ( 0.09%) 5895870 ( 0.03%) 196.90
other 580 ( 0.00%) 104796 ( 0.00%) 180.68
icmp6 6324 ( 0.02%) 766542 ( 0.00%) 121.21
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 84 ( 0.00%) 70138 ( 0.00%) 834.98
tcpdump file: 201004132300.dump.gz (822.27 MB)