Traffic Trace Info
DumpFile: 201004141430.dump
FileSize: 2595.20MB
Id: 201004141430
StartTime: Wed Apr 14 14:30:01 2010
EndTime: Wed Apr 14 14:45:01 2010
TotalTime: 900.21 seconds
TotalCapSize: 2036.02MB CapLen: 96 bytes
# of packets: 36645670 (23460.61MB)
AvgRate: 218.55Mbps stddev:34.35M
IP flow (unique src/dst pair) Information
# of flows: 928924 (avg. 39.45 pkts/flow)
Top 10 big flow size (bytes/total in %):
13.4% 1.8% 1.7% 1.5% 1.2% 1.2% 0.8% 0.8% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 505723
Top 10 bandwidth usage (bytes/total in %):
14.4% 13.9% 13.8% 8.2% 3.9% 3.8% 3.3% 2.8% 2.3% 1.8%
# of IPv6 addresses: 1050
Top 10 bandwidth usage (bytes/total in %):
19.2% 15.5% 9.8% 5.2% 5.1% 4.3% 4.2% 4.2% 4.2% 3.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141430.pktlen.png)
detailed numbers
[ 32- 63]: 6027898
[ 64- 127]: 9971848
[ 128- 255]: 2697333
[ 256- 511]: 2006730
[ 512- 1023]: 1038442
[ 1024- 2047]: 14903419
Protocol Breakdown
![[protocol breakdown chart]](201004141430.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36645670 (100.00%) 24600229373 (100.00%) 671.30
ip 36592707 ( 99.86%) 24589529555 ( 99.96%) 671.98
tcp 23621070 ( 64.46%) 17550578337 ( 71.34%) 743.01
http(s) 7899436 ( 21.56%) 10567729190 ( 42.96%) 1337.78
http(c) 6656238 ( 18.16%) 853885963 ( 3.47%) 128.28
squid 244802 ( 0.67%) 70213487 ( 0.29%) 286.82
smtp 355965 ( 0.97%) 136974866 ( 0.56%) 384.80
nntp 6 ( 0.00%) 364 ( 0.00%) 60.67
ftp 23484 ( 0.06%) 6161646 ( 0.03%) 262.38
pop3 28753 ( 0.08%) 11188086 ( 0.05%) 389.11
imap 3239 ( 0.01%) 1031549 ( 0.00%) 318.48
telnet 413 ( 0.00%) 34040 ( 0.00%) 82.42
ssh 1048909 ( 2.86%) 157616261 ( 0.64%) 150.27
dns 51342 ( 0.14%) 3536091 ( 0.01%) 68.87
bgp 136 ( 0.00%) 50760 ( 0.00%) 373.24
napster 20 ( 0.00%) 2295 ( 0.00%) 114.75
realaud 21 ( 0.00%) 2400 ( 0.00%) 114.29
rtsp 69944 ( 0.19%) 19100811 ( 0.08%) 273.09
icecast 4751 ( 0.01%) 326861 ( 0.00%) 68.80
hotline 24 ( 0.00%) 3081 ( 0.00%) 128.38
other 7233580 ( 19.74%) 5722720166 ( 23.26%) 791.13
udp 9050151 ( 24.70%) 4914883805 ( 19.98%) 543.07
dns 758441 ( 2.07%) 126601438 ( 0.51%) 166.92
realaud 23 ( 0.00%) 3030 ( 0.00%) 131.74
halflif 80 ( 0.00%) 8976 ( 0.00%) 112.20
starcra 257 ( 0.00%) 27699 ( 0.00%) 107.78
everque 717 ( 0.00%) 135849 ( 0.00%) 189.47
unreal 61 ( 0.00%) 8387 ( 0.00%) 137.49
quake 31 ( 0.00%) 3205 ( 0.00%) 103.39
cuseeme 5 ( 0.00%) 1038 ( 0.00%) 207.60
other 8290025 ( 22.62%) 4787884256 ( 19.46%) 577.55
icmp 510691 ( 1.39%) 66349858 ( 0.27%) 129.92
ipip 332 ( 0.00%) 41944 ( 0.00%) 126.34
ipsec 1566 ( 0.00%) 476692 ( 0.00%) 304.40
ip6 3339579 ( 9.11%) 2047589648 ( 8.32%) 613.13
other 69318 ( 0.19%) 9609271 ( 0.04%) 138.63
frag 1995 ( 0.01%) 1983449 ( 0.01%) 994.21
ip6 52963 ( 0.14%) 10699818 ( 0.04%) 202.02
tcp6 16932 ( 0.05%) 3573240 ( 0.01%) 211.03
http(s) 194 ( 0.00%) 169145 ( 0.00%) 871.88
http(c) 4246 ( 0.01%) 428010 ( 0.00%) 100.80
smtp 1340 ( 0.00%) 1689129 ( 0.01%) 1260.54
ftp 2551 ( 0.01%) 264100 ( 0.00%) 103.53
imap 596 ( 0.00%) 61973 ( 0.00%) 103.98
ssh 4426 ( 0.01%) 591816 ( 0.00%) 133.71
dns 124 ( 0.00%) 31703 ( 0.00%) 255.67
bgp 103 ( 0.00%) 15878 ( 0.00%) 154.16
other 3352 ( 0.01%) 321486 ( 0.00%) 95.91
udp6 29935 ( 0.08%) 6317160 ( 0.03%) 211.03
dns 29812 ( 0.08%) 6300139 ( 0.03%) 211.33
other 123 ( 0.00%) 17021 ( 0.00%) 138.38
icmp6 5961 ( 0.02%) 714729 ( 0.00%) 119.90
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 105 ( 0.00%) 90609 ( 0.00%) 862.94
tcpdump file: 201004141430.dump.gz (921.30 MB)