Traffic Trace Info
DumpFile: 201004141900.dump
FileSize: 2236.80MB
Id: 201004141900
StartTime: Wed Apr 14 19:00:00 2010
EndTime: Wed Apr 14 19:15:01 2010
TotalTime: 900.45 seconds
TotalCapSize: 1751.27MB CapLen: 96 bytes
# of packets: 31819604 (19890.57MB)
AvgRate: 185.30Mbps stddev:15.13M
IP flow (unique src/dst pair) Information
# of flows: 1274983 (avg. 24.96 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.9% 1.7% 1.4% 1.1% 1.1% 1.0% 0.9% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 724297
Top 10 bandwidth usage (bytes/total in %):
13.4% 9.0% 5.7% 4.8% 4.7% 4.2% 4.0% 4.0% 2.9% 2.3%
# of IPv6 addresses: 1005
Top 10 bandwidth usage (bytes/total in %):
22.9% 13.0% 6.2% 5.5% 5.2% 5.1% 5.0% 4.9% 4.0% 3.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141900.pktlen.png)
detailed numbers
[ 32- 63]: 5697397
[ 64- 127]: 8276008
[ 128- 255]: 2303817
[ 256- 511]: 1992223
[ 512- 1023]: 912839
[ 1024- 2047]: 12637320
Protocol Breakdown
![[protocol breakdown chart]](201004141900.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 31819604 (100.00%) 20856775280 (100.00%) 655.47
ip 31764111 ( 99.83%) 20847208657 ( 99.95%) 656.31
tcp 19819347 ( 62.29%) 15106107549 ( 72.43%) 762.19
http(s) 9071335 ( 28.51%) 12182739434 ( 58.41%) 1342.99
http(c) 6316203 ( 19.85%) 795997565 ( 3.82%) 126.02
squid 312379 ( 0.98%) 110262433 ( 0.53%) 352.98
smtp 360409 ( 1.13%) 109950229 ( 0.53%) 305.07
ftp 24869 ( 0.08%) 4416842 ( 0.02%) 177.60
pop3 15492 ( 0.05%) 7761130 ( 0.04%) 500.98
imap 3351 ( 0.01%) 1509153 ( 0.01%) 450.36
telnet 899 ( 0.00%) 174922 ( 0.00%) 194.57
ssh 46735 ( 0.15%) 7199656 ( 0.03%) 154.05
dns 54703 ( 0.17%) 3726984 ( 0.02%) 68.13
bgp 364 ( 0.00%) 218711 ( 0.00%) 600.85
napster 2 ( 0.00%) 132 ( 0.00%) 66.00
realaud 2332 ( 0.01%) 151050 ( 0.00%) 64.77
rtsp 21666 ( 0.07%) 4526620 ( 0.02%) 208.93
icecast 25048 ( 0.08%) 10537146 ( 0.05%) 420.68
hotline 11 ( 0.00%) 9673 ( 0.00%) 879.36
other 3563540 ( 11.20%) 1866925329 ( 8.95%) 523.90
udp 7920354 ( 24.89%) 3707067084 ( 17.77%) 468.04
dns 784715 ( 2.47%) 135789979 ( 0.65%) 173.04
realaud 2911 ( 0.01%) 2756191 ( 0.01%) 946.82
halflif 65 ( 0.00%) 7733 ( 0.00%) 118.97
starcra 302 ( 0.00%) 33591 ( 0.00%) 111.23
everque 722 ( 0.00%) 147686 ( 0.00%) 204.55
unreal 165 ( 0.00%) 27445 ( 0.00%) 166.33
quake 192 ( 0.00%) 17191 ( 0.00%) 89.54
cuseeme 19 ( 0.00%) 1722 ( 0.00%) 90.63
other 7130855 ( 22.41%) 3568096492 ( 17.11%) 500.37
icmp 943922 ( 2.97%) 132758725 ( 0.64%) 140.65
ipip 346 ( 0.00%) 41492 ( 0.00%) 119.92
ipsec 1446 ( 0.00%) 477012 ( 0.00%) 329.88
ip6 3059555 ( 9.62%) 1885932114 ( 9.04%) 616.41
other 19141 ( 0.06%) 14824681 ( 0.07%) 774.50
frag 1924 ( 0.01%) 1981713 ( 0.01%) 1030.00
ip6 55493 ( 0.17%) 9566623 ( 0.05%) 172.39
tcp6 16276 ( 0.05%) 2131694 ( 0.01%) 130.97
http(s) 41 ( 0.00%) 19406 ( 0.00%) 473.32
http(c) 4640 ( 0.01%) 416823 ( 0.00%) 89.83
smtp 320 ( 0.00%) 291131 ( 0.00%) 909.78
ftp 2657 ( 0.01%) 276861 ( 0.00%) 104.20
imap 252 ( 0.00%) 28764 ( 0.00%) 114.14
ssh 3322 ( 0.01%) 281116 ( 0.00%) 84.62
dns 192 ( 0.00%) 43496 ( 0.00%) 226.54
bgp 122 ( 0.00%) 22820 ( 0.00%) 187.05
other 4730 ( 0.01%) 751277 ( 0.00%) 158.83
udp6 32517 ( 0.10%) 6557430 ( 0.03%) 201.66
dns 31788 ( 0.10%) 6466728 ( 0.03%) 203.43
other 729 ( 0.00%) 90702 ( 0.00%) 124.42
icmp6 6597 ( 0.02%) 812378 ( 0.00%) 123.14
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 73 ( 0.00%) 61041 ( 0.00%) 836.18
tcpdump file: 201004141900.dump.gz (815.94 MB)