Traffic Trace Info
DumpFile: 201004140645.dump
FileSize: 1716.33MB
Id: 201004140645
StartTime: Wed Apr 14 06:45:01 2010
EndTime: Wed Apr 14 07:00:01 2010
TotalTime: 900.20 seconds
TotalCapSize: 1340.81MB CapLen: 96 bytes
# of packets: 24609224 (14201.23MB)
AvgRate: 132.34Mbps stddev:10.67M
IP flow (unique src/dst pair) Information
# of flows: 1004967 (avg. 24.49 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.5% 2.0% 1.8% 1.5% 1.5% 1.3% 0.8% 0.8% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 544018
Top 10 bandwidth usage (bytes/total in %):
25.5% 14.2% 6.4% 5.9% 5.0% 5.0% 4.7% 4.3% 2.5% 2.2%
# of IPv6 addresses: 881
Top 10 bandwidth usage (bytes/total in %):
28.7% 11.7% 8.2% 6.5% 6.1% 5.7% 5.2% 4.4% 4.3% 3.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004140645.pktlen.png)
detailed numbers
[ 32- 63]: 3718975
[ 64- 127]: 6502056
[ 128- 255]: 2995147
[ 256- 511]: 1971876
[ 512- 1023]: 585641
[ 1024- 2047]: 8835529
Protocol Breakdown
![[protocol breakdown chart]](201004140645.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 24609224 (100.00%) 14891070591 (100.00%) 605.10
ip 24559712 ( 99.80%) 14883427916 ( 99.95%) 606.01
tcp 11420088 ( 46.41%) 8257224470 ( 55.45%) 723.04
http(s) 4370616 ( 17.76%) 5997595220 ( 40.28%) 1372.25
http(c) 2912111 ( 11.83%) 299020237 ( 2.01%) 102.68
squid 308679 ( 1.25%) 70257089 ( 0.47%) 227.61
smtp 353320 ( 1.44%) 93143070 ( 0.63%) 263.62
ftp 10013 ( 0.04%) 970375 ( 0.01%) 96.91
pop3 11077 ( 0.05%) 8394509 ( 0.06%) 757.83
imap 1268 ( 0.01%) 745222 ( 0.01%) 587.71
telnet 2495 ( 0.01%) 220515 ( 0.00%) 88.38
ssh 41194 ( 0.17%) 6330003 ( 0.04%) 153.66
dns 55858 ( 0.23%) 3841407 ( 0.03%) 68.77
bgp 140 ( 0.00%) 45783 ( 0.00%) 327.02
napster 82 ( 0.00%) 4958 ( 0.00%) 60.46
realaud 10 ( 0.00%) 1031 ( 0.00%) 103.10
rtsp 87 ( 0.00%) 5970 ( 0.00%) 68.62
icecast 452 ( 0.00%) 29290 ( 0.00%) 64.80
hotline 8 ( 0.00%) 487 ( 0.00%) 60.88
other 3352676 ( 13.62%) 1776619184 ( 11.93%) 529.91
udp 8538939 ( 34.70%) 4327244380 ( 29.06%) 506.77
dns 639110 ( 2.60%) 119387515 ( 0.80%) 186.80
realaud 47 ( 0.00%) 4143 ( 0.00%) 88.15
halflif 144 ( 0.00%) 24240 ( 0.00%) 168.33
starcra 260 ( 0.00%) 25629 ( 0.00%) 98.57
everque 356 ( 0.00%) 68449 ( 0.00%) 192.27
unreal 78 ( 0.00%) 12627 ( 0.00%) 161.88
quake 38 ( 0.00%) 3732 ( 0.00%) 98.21
cuseeme 4 ( 0.00%) 430 ( 0.00%) 107.50
other 7898226 ( 32.09%) 4207418791 ( 28.25%) 532.70
icmp 1111773 ( 4.52%) 172136303 ( 1.16%) 154.83
ipip 306 ( 0.00%) 35112 ( 0.00%) 114.75
ipsec 10797 ( 0.04%) 7193114 ( 0.05%) 666.21
ip6 3463598 ( 14.07%) 2116932112 ( 14.22%) 611.19
other 14211 ( 0.06%) 2662425 ( 0.02%) 187.35
frag 7845 ( 0.03%) 8333965 ( 0.06%) 1062.33
ip6 49512 ( 0.20%) 7642675 ( 0.05%) 154.36
tcp6 16428 ( 0.07%) 1796245 ( 0.01%) 109.34
http(s) 28 ( 0.00%) 15907 ( 0.00%) 568.11
http(c) 2873 ( 0.01%) 261292 ( 0.00%) 90.95
smtp 361 ( 0.00%) 194051 ( 0.00%) 537.54
ftp 5140 ( 0.02%) 529688 ( 0.00%) 103.05
imap 246 ( 0.00%) 28443 ( 0.00%) 115.62
ssh 1720 ( 0.01%) 143160 ( 0.00%) 83.23
dns 131 ( 0.00%) 28900 ( 0.00%) 220.61
bgp 99 ( 0.00%) 12349 ( 0.00%) 124.74
other 5830 ( 0.02%) 582455 ( 0.00%) 99.91
udp6 26978 ( 0.11%) 5083962 ( 0.03%) 188.45
dns 26684 ( 0.11%) 5035474 ( 0.03%) 188.71
halflif 1 ( 0.00%) 120 ( 0.00%) 120.00
other 293 ( 0.00%) 48368 ( 0.00%) 165.08
icmp6 6027 ( 0.02%) 718181 ( 0.00%) 119.16
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 48 ( 0.00%) 40071 ( 0.00%) 834.81
tcpdump file: 201004140645.dump.gz (617.30 MB)