Traffic Trace Info
DumpFile: 201004141730.dump
FileSize: 2790.79MB
Id: 201004141730
StartTime: Wed Apr 14 17:30:01 2010
EndTime: Wed Apr 14 17:45:01 2010
TotalTime: 900.39 seconds
TotalCapSize: -1908.88MB CapLen: 96 bytes
# of packets: 39561627 (25697.70MB)
AvgRate: 239.41Mbps stddev:17.31M
IP flow (unique src/dst pair) Information
# of flows: 1518591 (avg. 26.05 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.9% 2.1% 1.5% 1.2% 1.1% 1.1% 0.9% 0.8% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 848834
Top 10 bandwidth usage (bytes/total in %):
14.9% 8.2% 5.0% 5.0% 5.0% 4.4% 4.1% 4.0% 3.0% 2.5%
# of IPv6 addresses: 1173
Top 10 bandwidth usage (bytes/total in %):
68.2% 68.2% 7.0% 2.9% 1.9% 1.5% 1.5% 1.5% 1.5% 1.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141730.pktlen.png)
detailed numbers
[ 32- 63]: 6622024
[ 64- 127]: 10167098
[ 128- 255]: 3037426
[ 256- 511]: 2053855
[ 512- 1023]: 1241235
[ 1024- 2047]: 16439989
Protocol Breakdown
![[protocol breakdown chart]](201004141730.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 39561627 (100.00%) 26945995782 (100.00%) 681.11
ip 39489546 ( 99.82%) 26914463671 ( 99.88%) 681.56
tcp 25569937 ( 64.63%) 19524140500 ( 72.46%) 763.56
http(s) 11738778 ( 29.67%) 15641636196 ( 58.05%) 1332.48
http(c) 8293566 ( 20.96%) 1095013734 ( 4.06%) 132.03
squid 369601 ( 0.93%) 125206861 ( 0.46%) 338.76
smtp 412000 ( 1.04%) 141604521 ( 0.53%) 343.70
ftp 32261 ( 0.08%) 4200567 ( 0.02%) 130.21
pop3 22201 ( 0.06%) 12219228 ( 0.05%) 550.39
imap 3455 ( 0.01%) 1248817 ( 0.00%) 361.45
telnet 2081 ( 0.01%) 137939 ( 0.00%) 66.28
ssh 31997 ( 0.08%) 6365079 ( 0.02%) 198.93
dns 54399 ( 0.14%) 3722309 ( 0.01%) 68.43
bgp 153 ( 0.00%) 54958 ( 0.00%) 359.20
napster 33 ( 0.00%) 2765 ( 0.00%) 83.79
realaud 39 ( 0.00%) 3263 ( 0.00%) 83.67
rtsp 56790 ( 0.14%) 21470730 ( 0.08%) 378.07
icecast 8632 ( 0.02%) 2375365 ( 0.01%) 275.18
hotline 16 ( 0.00%) 1515 ( 0.00%) 94.69
other 4543924 ( 11.49%) 2468875993 ( 9.16%) 543.34
udp 9756009 ( 24.66%) 5048335987 ( 18.74%) 517.46
dns 971136 ( 2.45%) 158246970 ( 0.59%) 162.95
rip 8 ( 0.00%) 600 ( 0.00%) 75.00
realaud 42 ( 0.00%) 4353 ( 0.00%) 103.64
halflif 49 ( 0.00%) 5585 ( 0.00%) 113.98
starcra 269 ( 0.00%) 29939 ( 0.00%) 111.30
everque 645 ( 0.00%) 133932 ( 0.00%) 207.65
unreal 85 ( 0.00%) 11774 ( 0.00%) 138.52
quake 67 ( 0.00%) 6965 ( 0.00%) 103.96
cuseeme 5 ( 0.00%) 754 ( 0.00%) 150.80
other 8783073 ( 22.20%) 4889672156 ( 18.15%) 556.72
icmp 747537 ( 1.89%) 109107710 ( 0.40%) 145.96
ipip 326 ( 0.00%) 38870 ( 0.00%) 119.23
ipsec 1379 ( 0.00%) 442866 ( 0.00%) 321.15
ip6 3382882 ( 8.55%) 2225860186 ( 8.26%) 657.98
other 31476 ( 0.08%) 6537552 ( 0.02%) 207.70
frag 3209 ( 0.01%) 2937862 ( 0.01%) 915.51
ip6 72081 ( 0.18%) 31532111 ( 0.12%) 437.45
tcp6 31941 ( 0.08%) 23762407 ( 0.09%) 743.95
http(s) 14441 ( 0.04%) 21705510 ( 0.08%) 1503.05
http(c) 4695 ( 0.01%) 429904 ( 0.00%) 91.57
smtp 277 ( 0.00%) 83245 ( 0.00%) 300.52
ftp 2666 ( 0.01%) 276014 ( 0.00%) 103.53
imap 355 ( 0.00%) 39365 ( 0.00%) 110.89
ssh 5117 ( 0.01%) 644926 ( 0.00%) 126.04
dns 117 ( 0.00%) 30700 ( 0.00%) 262.39
bgp 114 ( 0.00%) 16583 ( 0.00%) 145.46
other 4159 ( 0.01%) 536160 ( 0.00%) 128.92
udp6 33436 ( 0.08%) 6924675 ( 0.03%) 207.10
dns 32857 ( 0.08%) 6837813 ( 0.03%) 208.11
other 579 ( 0.00%) 86862 ( 0.00%) 150.02
icmp6 6622 ( 0.02%) 799448 ( 0.00%) 120.73
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 52 ( 0.00%) 41501 ( 0.00%) 798.10
tcpdump file: 201004141730.dump.gz (999.38 MB)