Traffic Trace Info
DumpFile: 201004140745.dump
FileSize: 1696.74MB
Id: 201004140745
StartTime: Wed Apr 14 07:45:01 2010
EndTime: Wed Apr 14 08:00:01 2010
TotalTime: 900.10 seconds
TotalCapSize: 1327.13MB CapLen: 96 bytes
# of packets: 24222392 (15103.91MB)
AvgRate: 140.76Mbps stddev:14.50M
IP flow (unique src/dst pair) Information
# of flows: 912113 (avg. 26.56 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.2% 2.4% 1.5% 1.5% 1.4% 1.3% 1.2% 1.1% 1.0% 0.9%
IP address Information
# of IPv4 addresses: 532547
Top 10 bandwidth usage (bytes/total in %):
24.1% 14.0% 5.7% 5.3% 4.6% 4.1% 3.6% 3.3% 2.6% 2.4%
# of IPv6 addresses: 873
Top 10 bandwidth usage (bytes/total in %):
31.6% 10.5% 7.8% 6.9% 6.9% 5.5% 4.9% 4.8% 3.7% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004140745.pktlen.png)
detailed numbers
[ 32- 63]: 3184762
[ 64- 127]: 6466132
[ 128- 255]: 2567514
[ 256- 511]: 1750571
[ 512- 1023]: 673291
[ 1024- 2047]: 9580122
Protocol Breakdown
![[protocol breakdown chart]](201004140745.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 24222392 (100.00%) 15837593834 (100.00%) 653.84
ip 24176252 ( 99.81%) 15830657032 ( 99.96%) 654.80
tcp 11421402 ( 47.15%) 8695869986 ( 54.91%) 761.37
http(s) 4537167 ( 18.73%) 6114637656 ( 38.61%) 1347.68
http(c) 2682160 ( 11.07%) 304954288 ( 1.93%) 113.70
squid 318452 ( 1.31%) 104555886 ( 0.66%) 328.33
smtp 326645 ( 1.35%) 100752667 ( 0.64%) 308.45
nntp 5 ( 0.00%) 300 ( 0.00%) 60.00
ftp 10150 ( 0.04%) 955100 ( 0.01%) 94.10
pop3 11030 ( 0.05%) 8652397 ( 0.05%) 784.44
imap 2132 ( 0.01%) 1044712 ( 0.01%) 490.02
telnet 564 ( 0.00%) 55942 ( 0.00%) 99.19
ssh 43612 ( 0.18%) 3788040 ( 0.02%) 86.86
dns 54148 ( 0.22%) 3701597 ( 0.02%) 68.36
bgp 153 ( 0.00%) 37412 ( 0.00%) 244.52
napster 20 ( 0.00%) 1975 ( 0.00%) 98.75
realaud 21 ( 0.00%) 2079 ( 0.00%) 99.00
rtsp 214 ( 0.00%) 29452 ( 0.00%) 137.63
icecast 396 ( 0.00%) 27359 ( 0.00%) 69.09
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 3434528 ( 14.18%) 2052672818 ( 12.96%) 597.66
udp 8301371 ( 34.27%) 4756081156 ( 30.03%) 572.93
dns 605635 ( 2.50%) 110161438 ( 0.70%) 181.89
realaud 956 ( 0.00%) 59490 ( 0.00%) 62.23
halflif 210 ( 0.00%) 31353 ( 0.00%) 149.30
starcra 206 ( 0.00%) 19059 ( 0.00%) 92.52
everque 336 ( 0.00%) 64350 ( 0.00%) 191.52
unreal 82 ( 0.00%) 13401 ( 0.00%) 163.43
quake 28 ( 0.00%) 2729 ( 0.00%) 97.46
cuseeme 3 ( 0.00%) 523 ( 0.00%) 174.33
other 7693335 ( 31.76%) 4645435192 ( 29.33%) 603.83
icmp 798714 ( 3.30%) 141793919 ( 0.90%) 177.53
ipip 516 ( 0.00%) 72846 ( 0.00%) 141.17
ipsec 3428 ( 0.01%) 1273752 ( 0.01%) 371.57
ip6 3635630 ( 15.01%) 2232693647 ( 14.10%) 614.11
other 15191 ( 0.06%) 2871726 ( 0.02%) 189.04
frag 3434 ( 0.01%) 3566984 ( 0.02%) 1038.73
ip6 46140 ( 0.19%) 6936802 ( 0.04%) 150.34
tcp6 14089 ( 0.06%) 1455876 ( 0.01%) 103.33
http(s) 45 ( 0.00%) 24479 ( 0.00%) 543.98
http(c) 2809 ( 0.01%) 254704 ( 0.00%) 90.67
smtp 230 ( 0.00%) 94541 ( 0.00%) 411.05
ftp 4163 ( 0.02%) 428273 ( 0.00%) 102.88
imap 352 ( 0.00%) 38555 ( 0.00%) 109.53
ssh 1716 ( 0.01%) 142844 ( 0.00%) 83.24
dns 147 ( 0.00%) 40798 ( 0.00%) 277.54
bgp 105 ( 0.00%) 14057 ( 0.00%) 133.88
other 4522 ( 0.02%) 417625 ( 0.00%) 92.35
udp6 25920 ( 0.11%) 4710472 ( 0.03%) 181.73
dns 25811 ( 0.11%) 4693991 ( 0.03%) 181.86
other 109 ( 0.00%) 16481 ( 0.00%) 151.20
icmp6 6058 ( 0.03%) 730934 ( 0.00%) 120.66
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 42 ( 0.00%) 35304 ( 0.00%) 840.57
tcpdump file: 201004140745.dump.gz (603.20 MB)