Traffic Trace Info
DumpFile: 201004141700.dump
FileSize: 2724.70MB
Id: 201004141700
StartTime: Wed Apr 14 17:00:01 2010
EndTime: Wed Apr 14 17:15:01 2010
TotalTime: 899.23 seconds
TotalCapSize: -1962.74MB CapLen: 96 bytes
# of packets: 38759821 (24756.83MB)
AvgRate: 230.95Mbps stddev:15.21M
IP flow (unique src/dst pair) Information
# of flows: 1311621 (avg. 29.55 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.2% 2.8% 1.9% 1.2% 1.1% 1.1% 0.9% 0.9% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 759096
Top 10 bandwidth usage (bytes/total in %):
14.5% 9.0% 6.1% 5.7% 4.8% 4.7% 4.1% 4.1% 3.2% 2.9%
# of IPv6 addresses: 1154
Top 10 bandwidth usage (bytes/total in %):
19.3% 14.5% 7.6% 5.4% 4.3% 4.3% 4.2% 4.2% 4.1% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141700.pktlen.png)
detailed numbers
[ 32- 63]: 6222566
[ 64- 127]: 10480086
[ 128- 255]: 2959263
[ 256- 511]: 1886193
[ 512- 1023]: 1450115
[ 1024- 2047]: 15761598
Protocol Breakdown
![[protocol breakdown chart]](201004141700.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 38759821 (100.00%) 25959414371 (100.00%) 669.75
ip 38699954 ( 99.85%) 25948430644 ( 99.96%) 670.50
tcp 24139989 ( 62.28%) 18361248395 ( 70.73%) 760.62
http(s) 11350128 ( 29.28%) 15491528111 ( 59.68%) 1364.88
http(c) 8376559 ( 21.61%) 983140031 ( 3.79%) 117.37
squid 373511 ( 0.96%) 122675420 ( 0.47%) 328.44
smtp 444940 ( 1.15%) 125972623 ( 0.49%) 283.12
ftp 12771 ( 0.03%) 2050132 ( 0.01%) 160.53
pop3 27332 ( 0.07%) 9083674 ( 0.03%) 332.35
imap 3043 ( 0.01%) 737232 ( 0.00%) 242.27
telnet 474 ( 0.00%) 37586 ( 0.00%) 79.30
ssh 38138 ( 0.10%) 9252628 ( 0.04%) 242.61
dns 55026 ( 0.14%) 3799429 ( 0.01%) 69.05
bgp 187 ( 0.00%) 80748 ( 0.00%) 431.81
napster 13 ( 0.00%) 1464 ( 0.00%) 112.62
realaud 12 ( 0.00%) 776 ( 0.00%) 64.67
rtsp 81595 ( 0.21%) 51689031 ( 0.20%) 633.48
icecast 5087 ( 0.01%) 338735 ( 0.00%) 66.59
hotline 3 ( 0.00%) 194 ( 0.00%) 64.67
other 3371165 ( 8.70%) 1560860203 ( 6.01%) 463.00
udp 10152977 ( 26.19%) 5135641171 ( 19.78%) 505.83
dns 1005373 ( 2.59%) 170417682 ( 0.66%) 169.51
rip 8 ( 0.00%) 600 ( 0.00%) 75.00
realaud 23 ( 0.00%) 2827 ( 0.00%) 122.91
halflif 93 ( 0.00%) 16696 ( 0.00%) 179.53
starcra 9192 ( 0.02%) 8288390 ( 0.03%) 901.70
everque 631 ( 0.00%) 131444 ( 0.00%) 208.31
unreal 102 ( 0.00%) 12529 ( 0.00%) 122.83
quake 63 ( 0.00%) 6670 ( 0.00%) 105.87
cuseeme 11 ( 0.00%) 1263 ( 0.00%) 114.82
other 9137019 ( 23.57%) 4956562069 ( 19.09%) 542.47
icmp 614190 ( 1.58%) 75613740 ( 0.29%) 123.11
ipip 321 ( 0.00%) 38994 ( 0.00%) 121.48
ipsec 1493 ( 0.00%) 490526 ( 0.00%) 328.55
ip6 3664088 ( 9.45%) 2353307058 ( 9.07%) 642.26
other 126896 ( 0.33%) 22090760 ( 0.09%) 174.09
frag 2525 ( 0.01%) 2500108 ( 0.01%) 990.14
ip6 59867 ( 0.15%) 10983727 ( 0.04%) 183.47
tcp6 17017 ( 0.04%) 2063931 ( 0.01%) 121.29
http(s) 159 ( 0.00%) 147629 ( 0.00%) 928.48
http(c) 4046 ( 0.01%) 366818 ( 0.00%) 90.66
smtp 169 ( 0.00%) 72247 ( 0.00%) 427.50
ftp 2692 ( 0.01%) 277806 ( 0.00%) 103.20
imap 414 ( 0.00%) 47612 ( 0.00%) 115.00
ssh 5085 ( 0.01%) 636110 ( 0.00%) 125.10
dns 350 ( 0.00%) 92429 ( 0.00%) 264.08
bgp 137 ( 0.00%) 26644 ( 0.00%) 194.48
other 3965 ( 0.01%) 396636 ( 0.00%) 100.03
udp6 36310 ( 0.09%) 8078119 ( 0.03%) 222.48
dns 35843 ( 0.09%) 8005497 ( 0.03%) 223.35
other 467 ( 0.00%) 72622 ( 0.00%) 155.51
icmp6 6455 ( 0.02%) 791690 ( 0.00%) 122.65
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 55 ( 0.00%) 45907 ( 0.00%) 834.67
tcpdump file: 201004141700.dump.gz (969.21 MB)