Traffic Trace Info
DumpFile: 201004141345.dump
FileSize: 3110.00MB
Id: 201004141345
StartTime: Wed Apr 14 13:45:01 2010
EndTime: Wed Apr 14 14:00:00 2010
TotalTime: 899.27 seconds
TotalCapSize: -1639.79MB CapLen: 96 bytes
# of packets: 42845933 (29283.91MB)
AvgRate: 273.17Mbps stddev:31.18M
IP flow (unique src/dst pair) Information
# of flows: 1045989 (avg. 40.96 pkts/flow)
Top 10 big flow size (bytes/total in %):
32.4% 1.5% 1.1% 0.8% 0.7% 0.7% 0.6% 0.5% 0.5% 0.5%
IP address Information
# of IPv4 addresses: 603612
Top 10 bandwidth usage (bytes/total in %):
33.7% 33.2% 11.6% 7.3% 2.8% 2.2% 1.9% 1.9% 1.8% 1.5%
# of IPv6 addresses: 1027
Top 10 bandwidth usage (bytes/total in %):
32.7% 29.2% 15.4% 10.3% 10.3% 5.0% 4.2% 3.4% 3.4% 3.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141345.pktlen.png)
detailed numbers
[ 32- 63]: 5565774
[ 64- 127]: 12875048
[ 128- 255]: 2561569
[ 256- 511]: 1979138
[ 512- 1023]: 1008523
[ 1024- 2047]: 18855881
Protocol Breakdown
![[protocol breakdown chart]](201004141345.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 42845933 (100.00%) 30706407077 (100.00%) 716.67
ip 42750983 ( 99.78%) 30692611842 ( 99.96%) 717.94
tcp 29693149 ( 69.30%) 23718493801 ( 77.24%) 798.79
http(s) 7612787 ( 17.77%) 10101399828 ( 32.90%) 1326.90
http(c) 6502613 ( 15.18%) 934100380 ( 3.04%) 143.65
squid 227547 ( 0.53%) 68920175 ( 0.22%) 302.88
smtp 320212 ( 0.75%) 94460267 ( 0.31%) 294.99
nntp 4 ( 0.00%) 256 ( 0.00%) 64.00
ftp 35918 ( 0.08%) 15927133 ( 0.05%) 443.43
pop3 20998 ( 0.05%) 8236925 ( 0.03%) 392.27
imap 2617 ( 0.01%) 894405 ( 0.00%) 341.77
telnet 1071 ( 0.00%) 84233 ( 0.00%) 78.65
ssh 892084 ( 2.08%) 241849332 ( 0.79%) 271.11
dns 52047 ( 0.12%) 3596781 ( 0.01%) 69.11
bgp 129 ( 0.00%) 38223 ( 0.00%) 296.30
napster 176 ( 0.00%) 20466 ( 0.00%) 116.28
realaud 24 ( 0.00%) 1965 ( 0.00%) 81.88
rtsp 172499 ( 0.40%) 102574206 ( 0.33%) 594.64
icecast 5142 ( 0.01%) 347231 ( 0.00%) 67.53
hotline 5 ( 0.00%) 302 ( 0.00%) 60.40
other 13847271 ( 32.32%) 12146041393 ( 39.56%) 877.14
udp 8831783 ( 20.61%) 4651296162 ( 15.15%) 526.65
dns 788407 ( 1.84%) 155299272 ( 0.51%) 196.98
realaud 200 ( 0.00%) 37026 ( 0.00%) 185.13
halflif 736 ( 0.00%) 53704 ( 0.00%) 72.97
starcra 269 ( 0.00%) 33799 ( 0.00%) 125.65
everque 847 ( 0.00%) 142428 ( 0.00%) 168.16
unreal 82 ( 0.00%) 12433 ( 0.00%) 151.62
quake 1361 ( 0.00%) 836606 ( 0.00%) 614.70
cuseeme 11 ( 0.00%) 953 ( 0.00%) 86.64
other 8038362 ( 18.76%) 4494542602 ( 14.64%) 559.14
icmp 504793 ( 1.18%) 55359703 ( 0.18%) 109.67
ipip 298 ( 0.00%) 37796 ( 0.00%) 126.83
ipsec 1672 ( 0.00%) 499568 ( 0.00%) 298.78
ip6 3665034 ( 8.55%) 2260273246 ( 7.36%) 616.71
other 54254 ( 0.13%) 6651566 ( 0.02%) 122.60
frag 4526 ( 0.01%) 3909938 ( 0.01%) 863.88
ip6 94950 ( 0.22%) 13795235 ( 0.04%) 145.29
tcp6 60857 ( 0.14%) 7195301 ( 0.02%) 118.23
http(s) 1186 ( 0.00%) 1584975 ( 0.01%) 1336.40
http(c) 3543 ( 0.01%) 321753 ( 0.00%) 90.81
smtp 421 ( 0.00%) 180785 ( 0.00%) 429.42
ftp 3375 ( 0.01%) 360045 ( 0.00%) 106.68
imap 381 ( 0.00%) 43387 ( 0.00%) 113.88
ssh 3183 ( 0.01%) 276942 ( 0.00%) 87.01
dns 115 ( 0.00%) 38399 ( 0.00%) 333.90
bgp 108 ( 0.00%) 16405 ( 0.00%) 151.90
other 48545 ( 0.11%) 4372610 ( 0.01%) 90.07
udp6 27803 ( 0.06%) 5772038 ( 0.02%) 207.60
dns 27672 ( 0.06%) 5755232 ( 0.02%) 207.98
other 131 ( 0.00%) 16806 ( 0.00%) 128.29
icmp6 6186 ( 0.01%) 759786 ( 0.00%) 122.82
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 74 ( 0.00%) 64030 ( 0.00%) 865.27
tcpdump file: 201004141345.dump.gz (1061.86 MB)