Traffic Trace Info
DumpFile: 201004140530.dump
FileSize: 1729.72MB
Id: 201004140530
StartTime: Wed Apr 14 05:30:00 2010
EndTime: Wed Apr 14 05:45:01 2010
TotalTime: 900.11 seconds
TotalCapSize: 1346.86MB CapLen: 96 bytes
# of packets: 25090648 (15214.54MB)
AvgRate: 141.80Mbps stddev:12.41M
IP flow (unique src/dst pair) Information
# of flows: 1066495 (avg. 23.53 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.0% 1.7% 1.2% 0.9% 0.8% 0.7% 0.7% 0.6% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 612567
Top 10 bandwidth usage (bytes/total in %):
24.7% 9.7% 6.8% 5.7% 5.7% 5.4% 4.5% 4.1% 4.0% 3.2%
# of IPv6 addresses: 926
Top 10 bandwidth usage (bytes/total in %):
25.9% 10.7% 6.3% 5.8% 5.7% 5.1% 4.2% 3.8% 3.7% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004140530.pktlen.png)
detailed numbers
[ 32- 63]: 3461189
[ 64- 127]: 7360501
[ 128- 255]: 2205916
[ 256- 511]: 1768530
[ 512- 1023]: 671046
[ 1024- 2047]: 9623466
Protocol Breakdown
![[protocol breakdown chart]](201004140530.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 25090648 (100.00%) 15953601308 (100.00%) 635.84
ip 25036725 ( 99.79%) 15945148835 ( 99.95%) 636.87
tcp 12244147 ( 48.80%) 9101367039 ( 57.05%) 743.32
http(s) 4889797 ( 19.49%) 6616619322 ( 41.47%) 1353.15
http(c) 2707914 ( 10.79%) 266603109 ( 1.67%) 98.45
squid 367335 ( 1.46%) 161594142 ( 1.01%) 439.91
smtp 418799 ( 1.67%) 77548631 ( 0.49%) 185.17
nntp 547 ( 0.00%) 32820 ( 0.00%) 60.00
ftp 16466 ( 0.07%) 1487283 ( 0.01%) 90.32
pop3 8252 ( 0.03%) 7052400 ( 0.04%) 854.63
imap 617 ( 0.00%) 88843 ( 0.00%) 143.99
telnet 2817 ( 0.01%) 215728 ( 0.00%) 76.58
ssh 39164 ( 0.16%) 5402518 ( 0.03%) 137.95
dns 49535 ( 0.20%) 3410756 ( 0.02%) 68.86
bgp 158 ( 0.00%) 50583 ( 0.00%) 320.15
napster 4 ( 0.00%) 244 ( 0.00%) 61.00
realaud 24 ( 0.00%) 2005 ( 0.00%) 83.54
rtsp 86 ( 0.00%) 5967 ( 0.00%) 69.38
icecast 226 ( 0.00%) 14332 ( 0.00%) 63.42
hotline 3 ( 0.00%) 190 ( 0.00%) 63.33
other 3742402 ( 14.92%) 1961238106 ( 12.29%) 524.06
udp 9041155 ( 36.03%) 5092427260 ( 31.92%) 563.25
dns 701453 ( 2.80%) 122724396 ( 0.77%) 174.96
realaud 116 ( 0.00%) 19784 ( 0.00%) 170.55
halflif 99 ( 0.00%) 9957 ( 0.00%) 100.58
starcra 182 ( 0.00%) 18074 ( 0.00%) 99.31
everque 347 ( 0.00%) 64796 ( 0.00%) 186.73
unreal 91 ( 0.00%) 16124 ( 0.00%) 177.19
quake 72 ( 0.00%) 6235 ( 0.00%) 86.60
cuseeme 28 ( 0.00%) 10301 ( 0.00%) 367.89
other 8338279 ( 33.23%) 4969286718 ( 31.15%) 595.96
icmp 954680 ( 3.80%) 166584530 ( 1.04%) 174.49
ipip 389 ( 0.00%) 47756 ( 0.00%) 122.77
ipsec 2444 ( 0.01%) 914996 ( 0.01%) 374.38
ip6 2754912 ( 10.98%) 1548577103 ( 9.71%) 562.11
other 38998 ( 0.16%) 35230151 ( 0.22%) 903.38
frag 2236 ( 0.01%) 2334727 ( 0.01%) 1044.15
ip6 53923 ( 0.21%) 8452473 ( 0.05%) 156.75
tcp6 19504 ( 0.08%) 1930664 ( 0.01%) 98.99
http(s) 43 ( 0.00%) 17959 ( 0.00%) 417.65
http(c) 6117 ( 0.02%) 521537 ( 0.00%) 85.26
smtp 125 ( 0.00%) 40101 ( 0.00%) 320.81
ftp 5155 ( 0.02%) 532164 ( 0.00%) 103.23
imap 358 ( 0.00%) 42180 ( 0.00%) 117.82
ssh 1587 ( 0.01%) 131782 ( 0.00%) 83.04
dns 66 ( 0.00%) 16500 ( 0.00%) 250.00
bgp 112 ( 0.00%) 15126 ( 0.00%) 135.05
other 5941 ( 0.02%) 613315 ( 0.00%) 103.23
udp6 28027 ( 0.11%) 5696657 ( 0.04%) 203.26
dns 27792 ( 0.11%) 5655482 ( 0.04%) 203.49
other 235 ( 0.00%) 41175 ( 0.00%) 175.21
icmp6 6287 ( 0.03%) 756630 ( 0.00%) 120.35
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 74 ( 0.00%) 64306 ( 0.00%) 869.00
tcpdump file: 201004140530.dump.gz (640.93 MB)