Traffic Trace Info
DumpFile: 201004141230.dump
FileSize: 2725.25MB
Id: 201004141230
StartTime: Wed Apr 14 12:30:00 2010
EndTime: Wed Apr 14 12:45:01 2010
TotalTime: 900.58 seconds
TotalCapSize: -1945.62MB CapLen: 96 bytes
# of packets: 37664717 (24670.56MB)
AvgRate: 229.80Mbps stddev:15.25M
IP flow (unique src/dst pair) Information
# of flows: 1158070 (avg. 32.52 pkts/flow)
Top 10 big flow size (bytes/total in %):
22.3% 1.8% 0.9% 0.9% 0.8% 0.6% 0.6% 0.6% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 626419
Top 10 bandwidth usage (bytes/total in %):
23.4% 22.8% 11.2% 8.5% 3.0% 3.0% 2.7% 2.6% 2.5% 2.0%
# of IPv6 addresses: 1015
Top 10 bandwidth usage (bytes/total in %):
67.6% 67.5% 7.6% 2.6% 2.4% 2.0% 1.8% 1.7% 1.6% 1.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141230.pktlen.png)
detailed numbers
[ 32- 63]: 5679165
[ 64- 127]: 11027446
[ 128- 255]: 2176970
[ 256- 511]: 1972345
[ 512- 1023]: 1185670
[ 1024- 2047]: 15623121
Protocol Breakdown
![[protocol breakdown chart]](201004141230.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37664717 (100.00%) 25868961811 (100.00%) 686.82
ip 37597442 ( 99.82%) 25839966936 ( 99.89%) 687.28
tcp 25652504 ( 68.11%) 19552002884 ( 75.58%) 762.19
http(s) 7534548 ( 20.00%) 9972100275 ( 38.55%) 1323.52
http(c) 6017214 ( 15.98%) 829775912 ( 3.21%) 137.90
squid 244185 ( 0.65%) 65269591 ( 0.25%) 267.30
smtp 326028 ( 0.87%) 107536100 ( 0.42%) 329.84
ftp 22411 ( 0.06%) 5353177 ( 0.02%) 238.86
pop3 55978 ( 0.15%) 31848028 ( 0.12%) 568.94
imap 3000 ( 0.01%) 849228 ( 0.00%) 283.08
telnet 160 ( 0.00%) 18031 ( 0.00%) 112.69
ssh 673104 ( 1.79%) 100592457 ( 0.39%) 149.45
dns 53787 ( 0.14%) 3757923 ( 0.01%) 69.87
bgp 141 ( 0.00%) 38425 ( 0.00%) 272.52
napster 119 ( 0.00%) 8854 ( 0.00%) 74.40
realaud 21 ( 0.00%) 1719 ( 0.00%) 81.86
rtsp 134353 ( 0.36%) 80922212 ( 0.31%) 602.31
icecast 87082 ( 0.23%) 66639815 ( 0.26%) 765.25
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 10500361 ( 27.88%) 8287290411 ( 32.04%) 789.24
udp 7561655 ( 20.08%) 3861346604 ( 14.93%) 510.65
dns 728221 ( 1.93%) 144497272 ( 0.56%) 198.43
realaud 19 ( 0.00%) 4487 ( 0.00%) 236.16
halflif 1949 ( 0.01%) 129426 ( 0.00%) 66.41
starcra 187 ( 0.00%) 17077 ( 0.00%) 91.32
everque 635 ( 0.00%) 146020 ( 0.00%) 229.95
unreal 94 ( 0.00%) 15453 ( 0.00%) 164.39
quake 41 ( 0.00%) 3710 ( 0.00%) 90.49
cuseeme 5 ( 0.00%) 794 ( 0.00%) 158.80
other 6830009 ( 18.13%) 3716285373 ( 14.37%) 544.11
icmp 548824 ( 1.46%) 70904440 ( 0.27%) 129.19
ipip 335 ( 0.00%) 40224 ( 0.00%) 120.07
ipsec 1878 ( 0.00%) 584060 ( 0.00%) 311.00
ip6 3685573 ( 9.79%) 2336931419 ( 9.03%) 634.08
other 146673 ( 0.39%) 18157305 ( 0.07%) 123.79
frag 27425 ( 0.07%) 28071952 ( 0.11%) 1023.59
ip6 67275 ( 0.18%) 28994875 ( 0.11%) 430.99
tcp6 31312 ( 0.08%) 21857087 ( 0.08%) 698.04
http(s) 300 ( 0.00%) 336588 ( 0.00%) 1121.96
http(c) 4771 ( 0.01%) 437194 ( 0.00%) 91.64
smtp 194 ( 0.00%) 68565 ( 0.00%) 353.43
ftp 2740 ( 0.01%) 282521 ( 0.00%) 103.11
imap 304 ( 0.00%) 35808 ( 0.00%) 117.79
ssh 3231 ( 0.01%) 273362 ( 0.00%) 84.61
dns 135 ( 0.00%) 45186 ( 0.00%) 334.71
bgp 125 ( 0.00%) 22598 ( 0.00%) 180.78
other 19512 ( 0.05%) 20355265 ( 0.08%) 1043.22
udp6 29101 ( 0.08%) 6169985 ( 0.02%) 212.02
dns 28668 ( 0.08%) 6109195 ( 0.02%) 213.10
other 433 ( 0.00%) 60790 ( 0.00%) 140.39
icmp6 6677 ( 0.02%) 802930 ( 0.00%) 120.25
rtopt6 4 ( 0.00%) 568 ( 0.00%) 142.00
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 151 ( 0.00%) 160225 ( 0.00%) 1061.09
tcpdump file: 201004141230.dump.gz (949.91 MB)