Traffic Trace Info
DumpFile: 201004141145.dump
FileSize: 2468.37MB
Id: 201004141145
StartTime: Wed Apr 14 11:45:01 2010
EndTime: Wed Apr 14 12:00:01 2010
TotalTime: 899.74 seconds
TotalCapSize: 1941.08MB CapLen: 96 bytes
# of packets: 34555756 (21630.53MB)
AvgRate: 201.68Mbps stddev:16.56M
IP flow (unique src/dst pair) Information
# of flows: 1195040 (avg. 28.92 pkts/flow)
Top 10 big flow size (bytes/total in %):
15.7% 1.9% 1.6% 1.6% 1.3% 1.3% 0.9% 0.9% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 661192
Top 10 bandwidth usage (bytes/total in %):
16.6% 16.1% 13.3% 8.0% 3.5% 3.4% 3.0% 2.6% 2.5% 2.1%
# of IPv6 addresses: 1041
Top 10 bandwidth usage (bytes/total in %):
71.1% 71.1% 7.1% 1.9% 1.9% 1.9% 1.9% 1.7% 1.6% 1.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141145.pktlen.png)
detailed numbers
[ 32- 63]: 5210288
[ 64- 127]: 10620385
[ 128- 255]: 2273728
[ 256- 511]: 1719433
[ 512- 1023]: 1069817
[ 1024- 2047]: 13662105
Protocol Breakdown
![[protocol breakdown chart]](201004141145.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 34555756 (100.00%) 22681254976 (100.00%) 656.37
ip 34487880 ( 99.80%) 22650180872 ( 99.86%) 656.76
tcp 22836697 ( 66.09%) 16675359923 ( 73.52%) 730.20
http(s) 7270609 ( 21.04%) 9633507331 ( 42.47%) 1324.99
http(c) 5829193 ( 16.87%) 820240238 ( 3.62%) 140.71
squid 236444 ( 0.68%) 84700333 ( 0.37%) 358.23
smtp 329557 ( 0.95%) 92382390 ( 0.41%) 280.32
ftp 23560 ( 0.07%) 7974441 ( 0.04%) 338.47
pop3 21092 ( 0.06%) 9547406 ( 0.04%) 452.66
imap 9020 ( 0.03%) 2682702 ( 0.01%) 297.42
telnet 2413 ( 0.01%) 159244 ( 0.00%) 65.99
ssh 701634 ( 2.03%) 100935668 ( 0.45%) 143.86
dns 49818 ( 0.14%) 3408382 ( 0.02%) 68.42
bgp 163 ( 0.00%) 60248 ( 0.00%) 369.62
napster 35 ( 0.00%) 4126 ( 0.00%) 117.89
realaud 727 ( 0.00%) 48885 ( 0.00%) 67.24
rtsp 173507 ( 0.50%) 74015407 ( 0.33%) 426.58
icecast 725 ( 0.00%) 59283 ( 0.00%) 81.77
other 8188193 ( 23.70%) 5845633419 ( 25.77%) 713.91
udp 8146654 ( 23.58%) 4092943382 ( 18.05%) 502.41
dns 663466 ( 1.92%) 113822118 ( 0.50%) 171.56
realaud 45 ( 0.00%) 5711 ( 0.00%) 126.91
halflif 95 ( 0.00%) 12349 ( 0.00%) 129.99
starcra 256 ( 0.00%) 27780 ( 0.00%) 108.52
everque 1392 ( 0.00%) 805803 ( 0.00%) 578.88
unreal 106 ( 0.00%) 15889 ( 0.00%) 149.90
quake 19710 ( 0.06%) 9733721 ( 0.04%) 493.85
cuseeme 2 ( 0.00%) 181 ( 0.00%) 90.50
other 7461076 ( 21.59%) 3968172498 ( 17.50%) 531.85
icmp 503542 ( 1.46%) 55701930 ( 0.25%) 110.62
ipip 345 ( 0.00%) 42060 ( 0.00%) 121.91
ipsec 1682 ( 0.00%) 508764 ( 0.00%) 302.48
ip6 2953879 ( 8.55%) 1819513630 ( 8.02%) 615.97
other 45081 ( 0.13%) 6111183 ( 0.03%) 135.56
frag 3092 ( 0.01%) 3621459 ( 0.02%) 1171.24
ip6 67876 ( 0.20%) 31074104 ( 0.14%) 457.81
tcp6 33090 ( 0.10%) 24489805 ( 0.11%) 740.10
http(s) 281 ( 0.00%) 272254 ( 0.00%) 968.88
http(c) 4348 ( 0.01%) 391573 ( 0.00%) 90.06
smtp 310 ( 0.00%) 131566 ( 0.00%) 424.41
ftp 2751 ( 0.01%) 282810 ( 0.00%) 102.80
imap 340 ( 0.00%) 39610 ( 0.00%) 116.50
ssh 3386 ( 0.01%) 300136 ( 0.00%) 88.64
dns 144 ( 0.00%) 32096 ( 0.00%) 222.89
bgp 110 ( 0.00%) 15480 ( 0.00%) 140.73
other 21420 ( 0.06%) 23024280 ( 0.10%) 1074.90
udp6 28354 ( 0.08%) 5768542 ( 0.03%) 203.45
dns 28234 ( 0.08%) 5750725 ( 0.03%) 203.68
other 120 ( 0.00%) 17817 ( 0.00%) 148.47
icmp6 6351 ( 0.02%) 764521 ( 0.00%) 120.38
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 50 ( 0.00%) 47020 ( 0.00%) 940.40
tcpdump file: 201004141145.dump.gz (883.77 MB)