Traffic Trace Info
DumpFile: 201004140730.dump
FileSize: 1530.50MB
Id: 201004140730
StartTime: Wed Apr 14 07:30:01 2010
EndTime: Wed Apr 14 07:42:45 2010
TotalTime: 763.88 seconds
TotalCapSize: 1197.23MB CapLen: 96 bytes
# of packets: 21841053 (13269.91MB)
AvgRate: 145.73Mbps stddev:11.45M
IP flow (unique src/dst pair) Information
# of flows: 748422 (avg. 29.18 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.7% 2.4% 2.0% 1.5% 1.1% 0.9% 0.9% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 443895
Top 10 bandwidth usage (bytes/total in %):
21.1% 13.6% 5.2% 5.2% 4.8% 4.7% 4.5% 3.9% 3.6% 2.9%
# of IPv6 addresses: 854
Top 10 bandwidth usage (bytes/total in %):
28.7% 11.8% 7.7% 6.8% 6.2% 5.6% 5.2% 4.5% 4.2% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004140730.pktlen.png)
detailed numbers
[ 32- 63]: 2982527
[ 64- 127]: 5771108
[ 128- 255]: 2623339
[ 256- 511]: 1568997
[ 512- 1023]: 580068
[ 1024- 2047]: 8315014
Protocol Breakdown
![[protocol breakdown chart]](201004140730.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 21841053 (100.00%) 13914514368 (100.00%) 637.08
ip 21799135 ( 99.81%) 13908032584 ( 99.95%) 638.01
tcp 10430605 ( 47.76%) 8226897889 ( 59.12%) 788.73
http(s) 4352804 ( 19.93%) 6000687538 ( 43.13%) 1378.58
http(c) 2305497 ( 10.56%) 245159513 ( 1.76%) 106.34
squid 277798 ( 1.27%) 91457471 ( 0.66%) 329.22
smtp 246953 ( 1.13%) 46476188 ( 0.33%) 188.20
ftp 10507 ( 0.05%) 1757233 ( 0.01%) 167.24
pop3 11502 ( 0.05%) 9478930 ( 0.07%) 824.11
imap 2845 ( 0.01%) 2535264 ( 0.02%) 891.13
telnet 620 ( 0.00%) 74863 ( 0.00%) 120.75
ssh 22622 ( 0.10%) 3043020 ( 0.02%) 134.52
dns 49402 ( 0.23%) 3487735 ( 0.03%) 70.60
bgp 121 ( 0.00%) 36897 ( 0.00%) 304.93
napster 6 ( 0.00%) 366 ( 0.00%) 61.00
realaud 123 ( 0.00%) 7853 ( 0.00%) 63.85
rtsp 174 ( 0.00%) 23176 ( 0.00%) 133.20
icecast 180 ( 0.00%) 13384 ( 0.00%) 74.36
other 3149444 ( 14.42%) 1822658038 ( 13.10%) 578.72
udp 7024444 ( 32.16%) 3598332227 ( 25.86%) 512.26
dns 513224 ( 2.35%) 92196645 ( 0.66%) 179.64
realaud 806 ( 0.00%) 49444 ( 0.00%) 61.34
halflif 127 ( 0.00%) 19634 ( 0.00%) 154.60
starcra 155 ( 0.00%) 13812 ( 0.00%) 89.11
everque 294 ( 0.00%) 52235 ( 0.00%) 177.67
unreal 94 ( 0.00%) 16059 ( 0.00%) 170.84
quake 15 ( 0.00%) 1436 ( 0.00%) 95.73
cuseeme 2 ( 0.00%) 208 ( 0.00%) 104.00
other 6509232 ( 29.80%) 3505721174 ( 25.19%) 538.58
icmp 1251948 ( 5.73%) 180453454 ( 1.30%) 144.14
ipip 299 ( 0.00%) 36318 ( 0.00%) 121.46
ipsec 5250 ( 0.02%) 2509998 ( 0.02%) 478.09
ip6 3072688 ( 14.07%) 1897202772 ( 13.63%) 617.44
other 13901 ( 0.06%) 2599926 ( 0.02%) 187.03
frag 2099 ( 0.01%) 2125561 ( 0.02%) 1012.65
ip6 41918 ( 0.19%) 6481784 ( 0.05%) 154.63
tcp6 14356 ( 0.07%) 1534696 ( 0.01%) 106.90
http(s) 68 ( 0.00%) 44419 ( 0.00%) 653.22
http(c) 3062 ( 0.01%) 289584 ( 0.00%) 94.57
smtp 157 ( 0.00%) 81534 ( 0.00%) 519.32
ftp 4377 ( 0.02%) 453199 ( 0.00%) 103.54
imap 242 ( 0.00%) 27888 ( 0.00%) 115.24
ssh 1372 ( 0.01%) 113996 ( 0.00%) 83.09
dns 107 ( 0.00%) 24772 ( 0.00%) 231.51
bgp 109 ( 0.00%) 15306 ( 0.00%) 140.42
other 4862 ( 0.02%) 483998 ( 0.00%) 99.55
udp6 22279 ( 0.10%) 4203441 ( 0.03%) 188.67
dns 22106 ( 0.10%) 4173785 ( 0.03%) 188.81
other 173 ( 0.00%) 29656 ( 0.00%) 171.42
icmp6 5123 ( 0.02%) 611984 ( 0.00%) 119.46
pim6 26 ( 0.00%) 3536 ( 0.00%) 136.00
other6 134 ( 0.00%) 128127 ( 0.00%) 956.17
tcpdump file: 201004140730.dump.gz (542.32 MB)