Traffic Trace Info
DumpFile: 201004140045.dump
FileSize: 2240.89MB
Id: 201004140045
StartTime: Wed Apr 14 00:45:00 2010
EndTime: Wed Apr 14 01:00:01 2010
TotalTime: 900.38 seconds
TotalCapSize: 1748.61MB CapLen: 96 bytes
# of packets: 32261256 (21196.15MB)
AvgRate: 197.48Mbps stddev:13.28M
IP flow (unique src/dst pair) Information
# of flows: 1284948 (avg. 25.11 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.7% 3.7% 1.8% 1.2% 0.9% 0.7% 0.6% 0.4% 0.4% 0.4%
IP address Information
# of IPv4 addresses: 734442
Top 10 bandwidth usage (bytes/total in %):
15.6% 7.5% 7.1% 6.5% 6.4% 5.9% 5.0% 4.7% 3.8% 3.8%
# of IPv6 addresses: 936
Top 10 bandwidth usage (bytes/total in %):
23.7% 10.4% 6.9% 6.9% 5.2% 5.1% 5.0% 4.9% 4.0% 3.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004140045.pktlen.png)
detailed numbers
[ 32- 63]: 5650894
[ 64- 127]: 8395947
[ 128- 255]: 2269899
[ 256- 511]: 1619051
[ 512- 1023]: 674849
[ 1024- 2047]: 13650616
Protocol Breakdown
![[protocol breakdown chart]](201004140045.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 32261256 (100.00%) 22225777453 (100.00%) 688.93
ip 32209702 ( 99.84%) 22216548195 ( 99.96%) 689.75
tcp 19860790 ( 61.56%) 16190989798 ( 72.85%) 815.22
http(s) 10091038 ( 31.28%) 14053377372 ( 63.23%) 1392.66
http(c) 5347283 ( 16.57%) 514679722 ( 2.32%) 96.25
squid 360015 ( 1.12%) 124436977 ( 0.56%) 345.64
smtp 314553 ( 0.98%) 70696897 ( 0.32%) 224.75
nntp 12 ( 0.00%) 756 ( 0.00%) 63.00
ftp 28875 ( 0.09%) 2488641 ( 0.01%) 86.19
pop3 12423 ( 0.04%) 8776508 ( 0.04%) 706.47
imap 208386 ( 0.65%) 201143109 ( 0.90%) 965.24
telnet 701 ( 0.00%) 65367 ( 0.00%) 93.25
ssh 178006 ( 0.55%) 18374804 ( 0.08%) 103.23
dns 56287 ( 0.17%) 3861375 ( 0.02%) 68.60
bgp 158 ( 0.00%) 56692 ( 0.00%) 358.81
napster 10 ( 0.00%) 665 ( 0.00%) 66.50
realaud 14 ( 0.00%) 1635 ( 0.00%) 116.79
rtsp 76 ( 0.00%) 10637 ( 0.00%) 139.96
icecast 319 ( 0.00%) 24780 ( 0.00%) 77.68
hotline 12 ( 0.00%) 2114 ( 0.00%) 176.17
other 3262615 ( 10.11%) 1192991327 ( 5.37%) 365.65
udp 8549074 ( 26.50%) 4393122758 ( 19.77%) 513.87
dns 704970 ( 2.19%) 120520143 ( 0.54%) 170.96
rip 4 ( 0.00%) 300 ( 0.00%) 75.00
realaud 63 ( 0.00%) 6227 ( 0.00%) 98.84
halflif 109 ( 0.00%) 11564 ( 0.00%) 106.09
starcra 276 ( 0.00%) 26463 ( 0.00%) 95.88
everque 452 ( 0.00%) 83450 ( 0.00%) 184.62
unreal 82 ( 0.00%) 12482 ( 0.00%) 152.22
quake 107 ( 0.00%) 9020 ( 0.00%) 84.30
cuseeme 3 ( 0.00%) 283 ( 0.00%) 94.33
other 7842897 ( 24.31%) 4272344202 ( 19.22%) 544.74
icmp 883392 ( 2.74%) 148280837 ( 0.67%) 167.85
ipip 340 ( 0.00%) 40116 ( 0.00%) 117.99
ipsec 3860 ( 0.01%) 1225272 ( 0.01%) 317.43
ip6 2665388 ( 8.26%) 1440774085 ( 6.48%) 540.55
other 246858 ( 0.77%) 42115329 ( 0.19%) 170.61
frag 860 ( 0.00%) 951101 ( 0.00%) 1105.93
ip6 51554 ( 0.16%) 9229258 ( 0.04%) 179.02
tcp6 15994 ( 0.05%) 2746019 ( 0.01%) 171.69
http(s) 1047 ( 0.00%) 1049323 ( 0.00%) 1002.22
http(c) 2973 ( 0.01%) 298108 ( 0.00%) 100.27
smtp 2902 ( 0.01%) 436312 ( 0.00%) 150.35
ftp 2623 ( 0.01%) 273995 ( 0.00%) 104.46
imap 249 ( 0.00%) 28739 ( 0.00%) 115.42
ssh 1719 ( 0.01%) 143066 ( 0.00%) 83.23
dns 145 ( 0.00%) 38994 ( 0.00%) 268.92
bgp 110 ( 0.00%) 14265 ( 0.00%) 129.68
other 4226 ( 0.01%) 463217 ( 0.00%) 109.61
udp6 29192 ( 0.09%) 5659214 ( 0.03%) 193.86
dns 28496 ( 0.09%) 5534843 ( 0.02%) 194.23
other 696 ( 0.00%) 124371 ( 0.00%) 178.69
icmp6 6273 ( 0.02%) 764548 ( 0.00%) 121.88
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 65 ( 0.00%) 55397 ( 0.00%) 852.26
tcpdump file: 201004140045.dump.gz (831.80 MB)