Traffic Trace Info
DumpFile: 201004141945.dump
FileSize: 2591.64MB
Id: 201004141945
StartTime: Wed Apr 14 19:45:01 2010
EndTime: Wed Apr 14 20:00:01 2010
TotalTime: 900.42 seconds
TotalCapSize: 2032.87MB CapLen: 96 bytes
# of packets: 36612994 (23134.91MB)
AvgRate: 215.54Mbps stddev:25.92M
IP flow (unique src/dst pair) Information
# of flows: 1403594 (avg. 26.09 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.3% 3.1% 1.5% 1.2% 0.9% 0.7% 0.7% 0.7% 0.6% 0.5%
IP address Information
# of IPv4 addresses: 765082
Top 10 bandwidth usage (bytes/total in %):
12.0% 11.2% 7.4% 5.3% 4.4% 3.9% 3.9% 3.4% 3.4% 3.2%
# of IPv6 addresses: 1099
Top 10 bandwidth usage (bytes/total in %):
22.4% 8.7% 6.1% 6.0% 5.4% 4.9% 4.8% 4.7% 4.6% 4.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004141945.pktlen.png)
detailed numbers
[ 32- 63]: 5967488
[ 64- 127]: 10342825
[ 128- 255]: 2607199
[ 256- 511]: 1972963
[ 512- 1023]: 970058
[ 1024- 2047]: 14752461
Protocol Breakdown
![[protocol breakdown chart]](201004141945.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36612994 (100.00%) 24258710902 (100.00%) 662.57
ip 36555178 ( 99.84%) 24248927764 ( 99.96%) 663.35
tcp 24045289 ( 65.67%) 18240069598 ( 75.19%) 758.57
http(s) 10899992 ( 29.77%) 14872571339 ( 61.31%) 1364.46
http(c) 6955870 ( 19.00%) 707269295 ( 2.92%) 101.68
squid 298452 ( 0.82%) 97317618 ( 0.40%) 326.07
smtp 526868 ( 1.44%) 128395350 ( 0.53%) 243.70
nntp 5 ( 0.00%) 310 ( 0.00%) 62.00
ftp 27635 ( 0.08%) 6397451 ( 0.03%) 231.50
pop3 21970 ( 0.06%) 17149838 ( 0.07%) 780.60
imap 2871 ( 0.01%) 696923 ( 0.00%) 242.75
telnet 220 ( 0.00%) 61356 ( 0.00%) 278.89
ssh 1362165 ( 3.72%) 206260499 ( 0.85%) 151.42
dns 57956 ( 0.16%) 3960251 ( 0.02%) 68.33
bgp 159 ( 0.00%) 60384 ( 0.00%) 379.77
napster 105 ( 0.00%) 11114 ( 0.00%) 105.85
realaud 12 ( 0.00%) 1891 ( 0.00%) 157.58
rtsp 96429 ( 0.26%) 89329610 ( 0.37%) 926.38
icecast 21408 ( 0.06%) 7552897 ( 0.03%) 352.81
hotline 13 ( 0.00%) 1664 ( 0.00%) 128.00
other 3773156 ( 10.31%) 2103031628 ( 8.67%) 557.37
udp 8433801 ( 23.03%) 4055652373 ( 16.72%) 480.88
dns 862092 ( 2.35%) 144096819 ( 0.59%) 167.15
realaud 12580 ( 0.03%) 9914560 ( 0.04%) 788.12
halflif 474 ( 0.00%) 297042 ( 0.00%) 626.67
starcra 240 ( 0.00%) 25355 ( 0.00%) 105.65
everque 604 ( 0.00%) 100721 ( 0.00%) 166.76
unreal 100 ( 0.00%) 16145 ( 0.00%) 161.45
quake 129 ( 0.00%) 17060 ( 0.00%) 132.25
cuseeme 27 ( 0.00%) 2219 ( 0.00%) 82.19
other 7557161 ( 20.64%) 3900931145 ( 16.08%) 516.19
icmp 977005 ( 2.67%) 125288103 ( 0.52%) 128.24
ipip 311 ( 0.00%) 37442 ( 0.00%) 120.39
ipsec 432 ( 0.00%) 80912 ( 0.00%) 187.30
ip6 3043608 ( 8.31%) 1819014189 ( 7.50%) 597.65
other 54732 ( 0.15%) 8785147 ( 0.04%) 160.51
frag 1708 ( 0.00%) 1730656 ( 0.01%) 1013.26
ip6 57816 ( 0.16%) 9783138 ( 0.04%) 169.21
tcp6 15691 ( 0.04%) 1968173 ( 0.01%) 125.43
http(s) 57 ( 0.00%) 33694 ( 0.00%) 591.12
http(c) 4017 ( 0.01%) 363493 ( 0.00%) 90.49
smtp 525 ( 0.00%) 232518 ( 0.00%) 442.89
ftp 2647 ( 0.01%) 277625 ( 0.00%) 104.88
imap 367 ( 0.00%) 42562 ( 0.00%) 115.97
ssh 3308 ( 0.01%) 282772 ( 0.00%) 85.48
dns 87 ( 0.00%) 25600 ( 0.00%) 294.25
bgp 139 ( 0.00%) 32606 ( 0.00%) 234.58
other 4544 ( 0.01%) 677303 ( 0.00%) 149.05
udp6 35352 ( 0.10%) 6924714 ( 0.03%) 195.88
dns 34514 ( 0.09%) 6824596 ( 0.03%) 197.73
other 838 ( 0.00%) 100118 ( 0.00%) 119.47
icmp6 6679 ( 0.02%) 832087 ( 0.00%) 124.58
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 64 ( 0.00%) 54084 ( 0.00%) 845.06
tcpdump file: 201004141945.dump.gz (954.85 MB)