Traffic Trace Info
DumpFile: 201004132345.dump
FileSize: 2212.47MB
Id: 201004132345
StartTime: Tue Apr 13 23:45:01 2010
EndTime: Wed Apr 14 00:00:01 2010
TotalTime: 900.26 seconds
TotalCapSize: 1724.15MB CapLen: 96 bytes
# of packets: 32002252 (20359.13MB)
AvgRate: 189.71Mbps stddev:14.42M
IP flow (unique src/dst pair) Information
# of flows: 1202219 (avg. 26.62 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.3% 1.7% 1.4% 0.9% 0.8% 0.6% 0.5% 0.5% 0.4% 0.4%
IP address Information
# of IPv4 addresses: 662355
Top 10 bandwidth usage (bytes/total in %):
15.2% 8.3% 7.2% 7.1% 6.9% 6.6% 4.2% 3.1% 3.1% 2.7%
# of IPv6 addresses: 1007
Top 10 bandwidth usage (bytes/total in %):
27.3% 7.1% 6.0% 5.9% 5.9% 4.5% 4.1% 4.1% 3.3% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004132345.pktlen.png)
detailed numbers
[ 32- 63]: 6112452
[ 64- 127]: 8162722
[ 128- 255]: 2329033
[ 256- 511]: 1703400
[ 512- 1023]: 695449
[ 1024- 2047]: 12999196
Protocol Breakdown
![[protocol breakdown chart]](201004132345.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 32002252 (100.00%) 21348096840 (100.00%) 667.08
ip 31952944 ( 99.85%) 21340077631 ( 99.96%) 667.86
tcp 19728320 ( 61.65%) 15761308222 ( 73.83%) 798.92
http(s) 9798977 ( 30.62%) 13486584477 ( 63.17%) 1376.33
http(c) 5564946 ( 17.39%) 559419693 ( 2.62%) 100.53
squid 389660 ( 1.22%) 127914659 ( 0.60%) 328.27
smtp 367500 ( 1.15%) 72136998 ( 0.34%) 196.29
ftp 26766 ( 0.08%) 2382195 ( 0.01%) 89.00
pop3 16900 ( 0.05%) 15532510 ( 0.07%) 919.08
imap 3904 ( 0.01%) 3131641 ( 0.01%) 802.16
telnet 311 ( 0.00%) 39816 ( 0.00%) 128.03
ssh 67260 ( 0.21%) 7115968 ( 0.03%) 105.80
dns 56974 ( 0.18%) 3911309 ( 0.02%) 68.65
bgp 136 ( 0.00%) 49458 ( 0.00%) 363.66
napster 75 ( 0.00%) 5065 ( 0.00%) 67.53
realaud 47 ( 0.00%) 6683 ( 0.00%) 142.19
rtsp 139 ( 0.00%) 42099 ( 0.00%) 302.87
icecast 228 ( 0.00%) 15062 ( 0.00%) 66.06
hotline 36 ( 0.00%) 2747 ( 0.00%) 76.31
other 3434430 ( 10.73%) 1483015982 ( 6.95%) 431.81
udp 8098657 ( 25.31%) 3812460560 ( 17.86%) 470.75
dns 740575 ( 2.31%) 126252251 ( 0.59%) 170.48
realaud 110 ( 0.00%) 9216 ( 0.00%) 83.78
halflif 74 ( 0.00%) 8288 ( 0.00%) 112.00
starcra 245 ( 0.00%) 23635 ( 0.00%) 96.47
everque 602 ( 0.00%) 102593 ( 0.00%) 170.42
unreal 97 ( 0.00%) 17077 ( 0.00%) 176.05
quake 60 ( 0.00%) 5038 ( 0.00%) 83.97
cuseeme 7 ( 0.00%) 962 ( 0.00%) 137.43
other 7356794 ( 22.99%) 3685968295 ( 17.27%) 501.03
icmp 909388 ( 2.84%) 152881562 ( 0.72%) 168.11
ipip 295 ( 0.00%) 35902 ( 0.00%) 121.70
ipsec 1485 ( 0.00%) 481678 ( 0.00%) 324.36
ip6 2878988 ( 9.00%) 1548046021 ( 7.25%) 537.70
other 335811 ( 1.05%) 64863686 ( 0.30%) 193.16
frag 617 ( 0.00%) 633631 ( 0.00%) 1026.95
ip6 49308 ( 0.15%) 8019209 ( 0.04%) 162.64
tcp6 13492 ( 0.04%) 1679237 ( 0.01%) 124.46
http(s) 52 ( 0.00%) 30485 ( 0.00%) 586.25
http(c) 3311 ( 0.01%) 399306 ( 0.00%) 120.60
smtp 404 ( 0.00%) 138296 ( 0.00%) 342.32
ftp 2732 ( 0.01%) 282784 ( 0.00%) 103.51
imap 266 ( 0.00%) 31145 ( 0.00%) 117.09
ssh 1758 ( 0.01%) 155720 ( 0.00%) 88.58
dns 108 ( 0.00%) 27891 ( 0.00%) 258.25
bgp 109 ( 0.00%) 13511 ( 0.00%) 123.95
other 4752 ( 0.01%) 600099 ( 0.00%) 126.28
udp6 29690 ( 0.09%) 5566604 ( 0.03%) 187.49
dns 29105 ( 0.09%) 5457066 ( 0.03%) 187.50
other 585 ( 0.00%) 109538 ( 0.00%) 187.24
icmp6 6052 ( 0.02%) 731757 ( 0.00%) 120.91
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 44 ( 0.00%) 37531 ( 0.00%) 852.98
tcpdump file: 201004132345.dump.gz (825.90 MB)