Traffic Trace Info
DumpFile: 201004141615.dump
FileSize: 2578.70MB
Id: 201004141615
StartTime: Wed Apr 14 16:15:00 2010
EndTime: Wed Apr 14 16:30:01 2010
TotalTime: 900.25 seconds
TotalCapSize: 2012.02MB CapLen: 96 bytes
# of packets: 37137304 (22474.19MB)
AvgRate: 209.41Mbps stddev:15.33M
IP flow (unique src/dst pair) Information
# of flows: 1126152 (avg. 32.98 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.6% 1.5% 0.8% 0.8% 0.8% 0.8% 0.7% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 621629
Top 10 bandwidth usage (bytes/total in %):
15.0% 8.2% 5.2% 4.7% 4.6% 4.4% 4.0% 2.7% 2.3% 2.0%
# of IPv6 addresses: 1140
Top 10 bandwidth usage (bytes/total in %):
18.6% 15.7% 14.7% 14.6% 12.0% 7.1% 5.6% 4.3% 3.5% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141615.pktlen.png)
detailed numbers
[ 32- 63]: 6905090
[ 64- 127]: 9772712
[ 128- 255]: 2871213
[ 256- 511]: 2046974
[ 512- 1023]: 1454840
[ 1024- 2047]: 14086475
Protocol Breakdown
![[protocol breakdown chart]](201004141615.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 37137304 (100.00%) 23565895230 (100.00%) 634.56
ip 37070234 ( 99.82%) 23551944360 ( 99.94%) 635.33
tcp 22783146 ( 61.35%) 16409632230 ( 69.63%) 720.25
http(s) 9492147 ( 25.56%) 12894571428 ( 54.72%) 1358.45
http(c) 7730932 ( 20.82%) 909645468 ( 3.86%) 117.66
squid 290305 ( 0.78%) 88514672 ( 0.38%) 304.90
smtp 374167 ( 1.01%) 94052278 ( 0.40%) 251.36
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 28264 ( 0.08%) 10765426 ( 0.05%) 380.89
pop3 23805 ( 0.06%) 18606850 ( 0.08%) 781.64
imap 7825 ( 0.02%) 5592033 ( 0.02%) 714.64
telnet 1087 ( 0.00%) 80186 ( 0.00%) 73.77
ssh 115521 ( 0.31%) 20007887 ( 0.08%) 173.20
dns 55211 ( 0.15%) 3785618 ( 0.02%) 68.57
bgp 377 ( 0.00%) 229101 ( 0.00%) 607.69
napster 321 ( 0.00%) 66802 ( 0.00%) 208.11
realaud 66 ( 0.00%) 6533 ( 0.00%) 98.98
rtsp 131240 ( 0.35%) 71826014 ( 0.30%) 547.29
icecast 5453 ( 0.01%) 598167 ( 0.00%) 109.70
other 4526420 ( 12.19%) 2291283467 ( 9.72%) 506.20
udp 10261842 ( 27.63%) 5098470347 ( 21.63%) 496.84
dns 989924 ( 2.67%) 175761599 ( 0.75%) 177.55
realaud 23 ( 0.00%) 2465 ( 0.00%) 107.17
halflif 79 ( 0.00%) 9210 ( 0.00%) 116.58
starcra 20246 ( 0.05%) 18558739 ( 0.08%) 916.66
everque 687 ( 0.00%) 136084 ( 0.00%) 198.08
unreal 127 ( 0.00%) 18775 ( 0.00%) 147.83
quake 85 ( 0.00%) 8924 ( 0.00%) 104.99
cuseeme 5 ( 0.00%) 734 ( 0.00%) 146.80
other 9250200 ( 24.91%) 4903778931 ( 20.81%) 530.13
icmp 569460 ( 1.53%) 62046352 ( 0.26%) 108.96
ipip 327 ( 0.00%) 38886 ( 0.00%) 118.92
ipsec 1801 ( 0.00%) 740678 ( 0.00%) 411.26
ip6 3162268 ( 8.52%) 1945053162 ( 8.25%) 615.08
other 291390 ( 0.78%) 35962705 ( 0.15%) 123.42
frag 2057 ( 0.01%) 2019534 ( 0.01%) 981.79
ip6 67070 ( 0.18%) 13950870 ( 0.06%) 208.00
tcp6 18091 ( 0.05%) 3822300 ( 0.02%) 211.28
http(s) 206 ( 0.00%) 176069 ( 0.00%) 854.70
http(c) 5360 ( 0.01%) 473143 ( 0.00%) 88.27
smtp 210 ( 0.00%) 71774 ( 0.00%) 341.78
ftp 2719 ( 0.01%) 285837 ( 0.00%) 105.13
imap 384 ( 0.00%) 44656 ( 0.00%) 116.29
ssh 3589 ( 0.01%) 320470 ( 0.00%) 89.29
dns 10 ( 0.00%) 2679 ( 0.00%) 267.90
bgp 116 ( 0.00%) 18470 ( 0.00%) 159.22
other 5497 ( 0.01%) 2429202 ( 0.01%) 441.91
udp6 42362 ( 0.11%) 9275952 ( 0.04%) 218.97
dns 41829 ( 0.11%) 9195682 ( 0.04%) 219.84
other 533 ( 0.00%) 80270 ( 0.00%) 150.60
icmp6 6517 ( 0.02%) 790429 ( 0.00%) 121.29
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 69 ( 0.00%) 57973 ( 0.00%) 840.19
tcpdump file: 201004141615.dump.gz (937.60 MB)