Traffic Trace Info
DumpFile: 201004141100.dump
FileSize: 2234.27MB
Id: 201004141100
StartTime: Wed Apr 14 11:00:00 2010
EndTime: Wed Apr 14 11:15:01 2010
TotalTime: 900.70 seconds
TotalCapSize: 1753.74MB CapLen: 96 bytes
# of packets: 31491169 (20301.04MB)
AvgRate: 189.08Mbps stddev:14.51M
IP flow (unique src/dst pair) Information
# of flows: 924042 (avg. 34.08 pkts/flow)
Top 10 big flow size (bytes/total in %):
12.8% 2.1% 1.5% 1.3% 1.0% 1.0% 0.9% 0.8% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 509711
Top 10 bandwidth usage (bytes/total in %):
13.9% 13.6% 13.2% 9.9% 3.4% 3.3% 3.2% 3.0% 2.9% 2.2%
# of IPv6 addresses: 984
Top 10 bandwidth usage (bytes/total in %):
59.7% 59.7% 10.3% 10.3% 6.8% 2.5% 2.4% 2.4% 1.8% 1.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141100.pktlen.png)
detailed numbers
[ 32- 63]: 4778753
[ 64- 127]: 8852045
[ 128- 255]: 2250964
[ 256- 511]: 1842827
[ 512- 1023]: 811956
[ 1024- 2047]: 12954624
Protocol Breakdown
![[protocol breakdown chart]](201004141100.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 31491169 (100.00%) 21287188112 (100.00%) 675.97
ip 31424738 ( 99.79%) 21254743831 ( 99.85%) 676.37
tcp 18799645 ( 59.70%) 14499249523 ( 68.11%) 771.25
http(s) 6765113 ( 21.48%) 8850347673 ( 41.58%) 1308.23
http(c) 5067825 ( 16.09%) 683186362 ( 3.21%) 134.81
squid 287903 ( 0.91%) 132548220 ( 0.62%) 460.39
smtp 325910 ( 1.03%) 101311438 ( 0.48%) 310.86
ftp 21238 ( 0.07%) 2927398 ( 0.01%) 137.84
pop3 13491 ( 0.04%) 6489128 ( 0.03%) 481.00
imap 3472 ( 0.01%) 1017209 ( 0.00%) 292.97
telnet 992 ( 0.00%) 66923 ( 0.00%) 67.46
ssh 64591 ( 0.21%) 7469750 ( 0.04%) 115.65
dns 53044 ( 0.17%) 3634696 ( 0.02%) 68.52
bgp 150 ( 0.00%) 53717 ( 0.00%) 358.11
napster 117 ( 0.00%) 13114 ( 0.00%) 112.09
realaud 2 ( 0.00%) 124 ( 0.00%) 62.00
rtsp 168636 ( 0.54%) 92992644 ( 0.44%) 551.44
icecast 7063 ( 0.02%) 4261416 ( 0.02%) 603.34
hotline 5 ( 0.00%) 684 ( 0.00%) 136.80
other 6020091 ( 19.12%) 4612928907 ( 21.67%) 766.26
udp 8447823 ( 26.83%) 4545623264 ( 21.35%) 538.08
dns 754386 ( 2.40%) 143247314 ( 0.67%) 189.89
rip 2 ( 0.00%) 154 ( 0.00%) 77.00
realaud 38 ( 0.00%) 4389 ( 0.00%) 115.50
halflif 171 ( 0.00%) 26668 ( 0.00%) 155.95
starcra 183 ( 0.00%) 18934 ( 0.00%) 103.46
everque 711 ( 0.00%) 145444 ( 0.00%) 204.56
unreal 103 ( 0.00%) 16917 ( 0.00%) 164.24
quake 14125 ( 0.04%) 9878388 ( 0.05%) 699.35
cuseeme 8 ( 0.00%) 637 ( 0.00%) 79.62
other 7677608 ( 24.38%) 4392052179 ( 20.63%) 572.06
icmp 681024 ( 2.16%) 79676055 ( 0.37%) 116.99
ipip 346 ( 0.00%) 42872 ( 0.00%) 123.91
ipsec 4882 ( 0.02%) 2228604 ( 0.01%) 456.49
ip6 3379659 ( 10.73%) 2109996398 ( 9.91%) 624.32
other 111359 ( 0.35%) 17927115 ( 0.08%) 160.98
frag 1991 ( 0.01%) 1982487 ( 0.01%) 995.72
ip6 66431 ( 0.21%) 32444281 ( 0.15%) 488.39
tcp6 32104 ( 0.10%) 25834574 ( 0.12%) 804.72
http(s) 13903 ( 0.04%) 20307643 ( 0.10%) 1460.67
http(c) 2495 ( 0.01%) 230469 ( 0.00%) 92.37
smtp 730 ( 0.00%) 836142 ( 0.00%) 1145.40
ftp 2738 ( 0.01%) 281350 ( 0.00%) 102.76
imap 236 ( 0.00%) 26936 ( 0.00%) 114.14
ssh 2916 ( 0.01%) 371224 ( 0.00%) 127.31
dns 167 ( 0.00%) 51943 ( 0.00%) 311.04
bgp 115 ( 0.00%) 19389 ( 0.00%) 168.60
other 8804 ( 0.03%) 3709478 ( 0.02%) 421.34
udp6 28087 ( 0.09%) 5773401 ( 0.03%) 205.55
dns 27853 ( 0.09%) 5734336 ( 0.03%) 205.88
other 234 ( 0.00%) 39065 ( 0.00%) 166.94
icmp6 6132 ( 0.02%) 766442 ( 0.00%) 124.99
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 78 ( 0.00%) 65784 ( 0.00%) 843.38
tcpdump file: 201004141100.dump.gz (790.58 MB)