Traffic Trace Info
DumpFile: 201004140830.dump
FileSize: 1859.63MB
Id: 201004140830
StartTime: Wed Apr 14 08:30:01 2010
EndTime: Wed Apr 14 08:45:00 2010
TotalTime: 899.35 seconds
TotalCapSize: 1451.66MB CapLen: 96 bytes
# of packets: 26736328 (16558.28MB)
AvgRate: 154.45Mbps stddev:13.46M
IP flow (unique src/dst pair) Information
# of flows: 965553 (avg. 27.69 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.9% 2.1% 1.9% 1.7% 1.3% 1.1% 1.0% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 549864
Top 10 bandwidth usage (bytes/total in %):
18.8% 11.2% 5.4% 5.0% 4.4% 4.0% 3.9% 3.2% 3.1% 2.9%
# of IPv6 addresses: 920
Top 10 bandwidth usage (bytes/total in %):
27.7% 9.1% 8.6% 7.5% 6.8% 6.1% 6.1% 6.0% 4.6% 4.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004140830.pktlen.png)
detailed numbers
[ 32- 63]: 4323450
[ 64- 127]: 7102461
[ 128- 255]: 2502925
[ 256- 511]: 1564945
[ 512- 1023]: 691603
[ 1024- 2047]: 10550944
Protocol Breakdown
![[protocol breakdown chart]](201004140830.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 26736328 (100.00%) 17362617481 (100.00%) 649.40
ip 26686560 ( 99.81%) 17354697744 ( 99.95%) 650.32
tcp 14249232 ( 53.30%) 10620028252 ( 61.17%) 745.31
http(s) 5705359 ( 21.34%) 7713314437 ( 44.42%) 1351.94
http(c) 3974004 ( 14.86%) 527404404 ( 3.04%) 132.71
squid 255684 ( 0.96%) 89917194 ( 0.52%) 351.67
smtp 346923 ( 1.30%) 102113446 ( 0.59%) 294.34
ftp 15911 ( 0.06%) 1577573 ( 0.01%) 99.15
pop3 10343 ( 0.04%) 7306198 ( 0.04%) 706.39
imap 1975 ( 0.01%) 772340 ( 0.00%) 391.06
telnet 1211 ( 0.00%) 113404 ( 0.00%) 93.64
ssh 349051 ( 1.31%) 56020332 ( 0.32%) 160.49
dns 54469 ( 0.20%) 3768167 ( 0.02%) 69.18
bgp 155 ( 0.00%) 46144 ( 0.00%) 297.70
napster 1395 ( 0.01%) 1221777 ( 0.01%) 875.83
realaud 11 ( 0.00%) 1097 ( 0.00%) 99.73
rtsp 51 ( 0.00%) 3738 ( 0.00%) 73.29
icecast 330 ( 0.00%) 23297 ( 0.00%) 70.60
hotline 10 ( 0.00%) 1169 ( 0.00%) 116.90
other 3532348 ( 13.21%) 2116423415 ( 12.19%) 599.15
udp 8498552 ( 31.79%) 4638146840 ( 26.71%) 545.76
dns 613114 ( 2.29%) 109640355 ( 0.63%) 178.83
realaud 46 ( 0.00%) 3912 ( 0.00%) 85.04
halflif 141 ( 0.00%) 24089 ( 0.00%) 170.84
starcra 253 ( 0.00%) 22765 ( 0.00%) 89.98
everque 426 ( 0.00%) 85319 ( 0.00%) 200.28
unreal 99 ( 0.00%) 18084 ( 0.00%) 182.67
quake 17 ( 0.00%) 1664 ( 0.00%) 97.88
cuseeme 5 ( 0.00%) 764 ( 0.00%) 152.80
other 7883905 ( 29.49%) 4528106478 ( 26.08%) 574.35
icmp 672383 ( 2.51%) 137373806 ( 0.79%) 204.31
ipip 336 ( 0.00%) 39774 ( 0.00%) 118.38
ipsec 7522 ( 0.03%) 3486578 ( 0.02%) 463.52
ip6 3243806 ( 12.13%) 1952560839 ( 11.25%) 601.94
other 14729 ( 0.06%) 3061655 ( 0.02%) 207.87
frag 2202 ( 0.01%) 2153129 ( 0.01%) 977.81
ip6 49768 ( 0.19%) 7919737 ( 0.05%) 159.13
tcp6 18528 ( 0.07%) 2436559 ( 0.01%) 131.51
http(s) 32 ( 0.00%) 16872 ( 0.00%) 527.25
http(c) 9173 ( 0.03%) 814938 ( 0.00%) 88.84
smtp 192 ( 0.00%) 77278 ( 0.00%) 402.49
ftp 2711 ( 0.01%) 280961 ( 0.00%) 103.64
imap 545 ( 0.00%) 59499 ( 0.00%) 109.17
ssh 1598 ( 0.01%) 132692 ( 0.00%) 83.04
dns 81 ( 0.00%) 25578 ( 0.00%) 315.78
bgp 111 ( 0.00%) 15024 ( 0.00%) 135.35
other 4085 ( 0.02%) 1013717 ( 0.01%) 248.16
udp6 25268 ( 0.09%) 4735887 ( 0.03%) 187.43
dns 24311 ( 0.09%) 4643777 ( 0.03%) 191.02
other 957 ( 0.00%) 92110 ( 0.00%) 96.25
icmp6 5897 ( 0.02%) 705902 ( 0.00%) 119.71
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 45 ( 0.00%) 37309 ( 0.00%) 829.09
tcpdump file: 201004140830.dump.gz (651.12 MB)