Traffic Trace Info
DumpFile: 201004140400.dump
FileSize: 1935.45MB
Id: 201004140400
StartTime: Wed Apr 14 04:00:01 2010
EndTime: Wed Apr 14 04:15:00 2010
TotalTime: 899.15 seconds
TotalCapSize: 1512.87MB CapLen: 96 bytes
# of packets: 27693260 (17494.42MB)
AvgRate: 163.20Mbps stddev:14.59M
IP flow (unique src/dst pair) Information
# of flows: 1167963 (avg. 23.71 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.0% 2.5% 1.7% 0.9% 0.7% 0.7% 0.6% 0.6% 0.5% 0.5%
IP address Information
# of IPv4 addresses: 681641
Top 10 bandwidth usage (bytes/total in %):
21.7% 9.6% 7.3% 6.8% 6.6% 6.3% 5.9% 4.0% 3.4% 3.0%
# of IPv6 addresses: 981
Top 10 bandwidth usage (bytes/total in %):
24.2% 10.6% 5.5% 5.5% 5.3% 5.3% 4.1% 4.0% 3.8% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004140400.pktlen.png)
detailed numbers
[ 32- 63]: 4127269
[ 64- 127]: 7381767
[ 128- 255]: 2446934
[ 256- 511]: 1806237
[ 512- 1023]: 872606
[ 1024- 2047]: 11058447
Protocol Breakdown
![[protocol breakdown chart]](201004140400.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 27693260 (100.00%) 18344227122 (100.00%) 662.41
ip 27639701 ( 99.81%) 18335177046 ( 99.95%) 663.36
tcp 14847372 ( 53.61%) 11684749346 ( 63.70%) 786.99
http(s) 6627482 ( 23.93%) 9087239261 ( 49.54%) 1371.15
http(c) 3323204 ( 12.00%) 318183020 ( 1.73%) 95.75
squid 308418 ( 1.11%) 97586187 ( 0.53%) 316.41
smtp 301277 ( 1.09%) 72823984 ( 0.40%) 241.72
ftp 17482 ( 0.06%) 1791286 ( 0.01%) 102.46
pop3 7534 ( 0.03%) 5883604 ( 0.03%) 780.94
imap 490 ( 0.00%) 53880 ( 0.00%) 109.96
telnet 4250 ( 0.02%) 309517 ( 0.00%) 72.83
ssh 203340 ( 0.73%) 28404890 ( 0.15%) 139.69
dns 53532 ( 0.19%) 3725730 ( 0.02%) 69.60
bgp 158 ( 0.00%) 55886 ( 0.00%) 353.71
napster 126 ( 0.00%) 15651 ( 0.00%) 124.21
realaud 65 ( 0.00%) 4306 ( 0.00%) 66.25
rtsp 93 ( 0.00%) 6478 ( 0.00%) 69.66
icecast 314 ( 0.00%) 20971 ( 0.00%) 66.79
hotline 55 ( 0.00%) 5059 ( 0.00%) 91.98
other 3999548 ( 14.44%) 2068639396 ( 11.28%) 517.22
udp 8494562 ( 30.67%) 4656123552 ( 25.38%) 548.13
dns 649058 ( 2.34%) 112420917 ( 0.61%) 173.21
rip 1 ( 0.00%) 109 ( 0.00%) 109.00
realaud 61 ( 0.00%) 6903 ( 0.00%) 113.16
halflif 87 ( 0.00%) 7313 ( 0.00%) 84.06
starcra 299 ( 0.00%) 27384 ( 0.00%) 91.59
everque 372 ( 0.00%) 63736 ( 0.00%) 171.33
unreal 4608 ( 0.02%) 2638447 ( 0.01%) 572.58
quake 64 ( 0.00%) 5435 ( 0.00%) 84.92
cuseeme 5 ( 0.00%) 494 ( 0.00%) 98.80
other 7839468 ( 28.31%) 4540663687 ( 24.75%) 579.21
icmp 1345965 ( 4.86%) 214081036 ( 1.17%) 159.05
ipip 339 ( 0.00%) 39542 ( 0.00%) 116.64
ipsec 4664 ( 0.02%) 1307434 ( 0.01%) 280.32
ip6 2919802 ( 10.54%) 1766676005 ( 9.63%) 605.07
other 26997 ( 0.10%) 12200131 ( 0.07%) 451.91
frag 2144 ( 0.01%) 2195470 ( 0.01%) 1024.01
ip6 53559 ( 0.19%) 9050076 ( 0.05%) 168.97
tcp6 16426 ( 0.06%) 1937825 ( 0.01%) 117.97
http(s) 287 ( 0.00%) 239961 ( 0.00%) 836.10
http(c) 6723 ( 0.02%) 582062 ( 0.00%) 86.58
smtp 506 ( 0.00%) 171747 ( 0.00%) 339.42
ftp 2735 ( 0.01%) 283970 ( 0.00%) 103.83
imap 351 ( 0.00%) 41397 ( 0.00%) 117.94
ssh 1593 ( 0.01%) 132274 ( 0.00%) 83.03
dns 142 ( 0.00%) 42119 ( 0.00%) 296.61
bgp 109 ( 0.00%) 14295 ( 0.00%) 131.15
other 3980 ( 0.01%) 430000 ( 0.00%) 108.04
udp6 31065 ( 0.11%) 6249115 ( 0.03%) 201.16
dns 30463 ( 0.11%) 6167156 ( 0.03%) 202.45
other 602 ( 0.00%) 81959 ( 0.00%) 136.14
icmp6 5892 ( 0.02%) 715796 ( 0.00%) 121.49
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 146 ( 0.00%) 143260 ( 0.00%) 981.23
tcpdump file: 201004140400.dump.gz (713.18 MB)