Traffic Trace Info
DumpFile: 201004140930.dump
FileSize: 2104.34MB
Id: 201004140930
StartTime: Wed Apr 14 09:30:01 2010
EndTime: Wed Apr 14 09:45:01 2010
TotalTime: 900.00 seconds
TotalCapSize: 1644.43MB CapLen: 96 bytes
# of packets: 30139511 (18259.26MB)
AvgRate: 170.20Mbps stddev:13.87M
IP flow (unique src/dst pair) Information
# of flows: 1017458 (avg. 29.62 pkts/flow)
Top 10 big flow size (bytes/total in %):
8.2% 2.8% 1.9% 1.5% 1.3% 1.1% 1.0% 1.0% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 569017
Top 10 bandwidth usage (bytes/total in %):
15.8% 11.7% 9.0% 8.4% 4.0% 3.3% 3.1% 2.9% 2.8% 2.7%
# of IPv6 addresses: 971
Top 10 bandwidth usage (bytes/total in %):
28.5% 6.4% 6.3% 6.3% 6.2% 5.4% 4.9% 4.9% 4.6% 4.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004140930.pktlen.png)
detailed numbers
[ 32- 63]: 4884874
[ 64- 127]: 8056070
[ 128- 255]: 2591566
[ 256- 511]: 2190747
[ 512- 1023]: 1114265
[ 1024- 2047]: 11301989
Protocol Breakdown
![[protocol breakdown chart]](201004140930.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 30139511 (100.00%) 19146223000 (100.00%) 635.25
ip 30094525 ( 99.85%) 19138526910 ( 99.96%) 635.95
tcp 16521077 ( 54.82%) 12115073336 ( 63.28%) 733.31
http(s) 5949440 ( 19.74%) 7902143090 ( 41.27%) 1328.22
http(c) 4950228 ( 16.42%) 683268139 ( 3.57%) 138.03
squid 268869 ( 0.89%) 105837488 ( 0.55%) 393.64
smtp 322189 ( 1.07%) 94467119 ( 0.49%) 293.20
ftp 15630 ( 0.05%) 1572341 ( 0.01%) 100.60
pop3 11800 ( 0.04%) 6803476 ( 0.04%) 576.57
imap 9756 ( 0.03%) 7472986 ( 0.04%) 765.99
telnet 345 ( 0.00%) 28775 ( 0.00%) 83.41
ssh 106015 ( 0.35%) 12062790 ( 0.06%) 113.78
dns 53368 ( 0.18%) 3704060 ( 0.02%) 69.41
bgp 168 ( 0.00%) 56786 ( 0.00%) 338.01
napster 103 ( 0.00%) 9609 ( 0.00%) 93.29
realaud 4467 ( 0.01%) 297412 ( 0.00%) 66.58
rtsp 38483 ( 0.13%) 2512840 ( 0.01%) 65.30
icecast 410 ( 0.00%) 31052 ( 0.00%) 75.74
other 4789804 ( 15.89%) 3294805253 ( 17.21%) 687.88
udp 8238027 ( 27.33%) 4236659303 ( 22.13%) 514.28
dns 693439 ( 2.30%) 129737223 ( 0.68%) 187.09
realaud 39 ( 0.00%) 4045 ( 0.00%) 103.72
halflif 130 ( 0.00%) 19753 ( 0.00%) 151.95
starcra 179 ( 0.00%) 17072 ( 0.00%) 95.37
everque 597 ( 0.00%) 114583 ( 0.00%) 191.93
unreal 88 ( 0.00%) 14773 ( 0.00%) 167.88
quake 75 ( 0.00%) 10465 ( 0.00%) 139.53
cuseeme 1 ( 0.00%) 90 ( 0.00%) 90.00
other 7542846 ( 25.03%) 4106453695 ( 21.45%) 544.42
icmp 753035 ( 2.50%) 86624684 ( 0.45%) 115.03
ipip 341 ( 0.00%) 42554 ( 0.00%) 124.79
ipsec 895582 ( 2.97%) 439134140 ( 2.29%) 490.33
ip6 3679996 ( 12.21%) 2260008862 ( 11.80%) 614.13
other 6467 ( 0.02%) 984031 ( 0.01%) 152.16
frag 8551 ( 0.03%) 9308180 ( 0.05%) 1088.55
ip6 44986 ( 0.15%) 7696090 ( 0.04%) 171.08
tcp6 12043 ( 0.04%) 1600926 ( 0.01%) 132.93
http(s) 393 ( 0.00%) 396549 ( 0.00%) 1009.03
http(c) 2755 ( 0.01%) 261207 ( 0.00%) 94.81
smtp 269 ( 0.00%) 90552 ( 0.00%) 336.62
ftp 2703 ( 0.01%) 280322 ( 0.00%) 103.71
imap 706 ( 0.00%) 76124 ( 0.00%) 107.82
ssh 1584 ( 0.01%) 131524 ( 0.00%) 83.03
dns 71 ( 0.00%) 19698 ( 0.00%) 277.44
bgp 137 ( 0.00%) 19262 ( 0.00%) 140.60
other 3425 ( 0.01%) 325688 ( 0.00%) 95.09
udp6 26841 ( 0.09%) 5313656 ( 0.03%) 197.97
dns 26777 ( 0.09%) 5303236 ( 0.03%) 198.05
realaud 1 ( 0.00%) 116 ( 0.00%) 116.00
other 63 ( 0.00%) 10304 ( 0.00%) 163.56
icmp6 5999 ( 0.02%) 718206 ( 0.00%) 119.72
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 73 ( 0.00%) 59222 ( 0.00%) 811.26
tcpdump file: 201004140930.dump.gz (724.30 MB)