Traffic Trace Info
DumpFile: 201004142000.dump
FileSize: 2349.00MB
Id: 201004142000
StartTime: Wed Apr 14 20:00:01 2010
EndTime: Wed Apr 14 20:15:01 2010
TotalTime: 900.06 seconds
TotalCapSize: 1839.07MB CapLen: 96 bytes
# of packets: 33414316 (20718.24MB)
AvgRate: 193.07Mbps stddev:16.04M
IP flow (unique src/dst pair) Information
# of flows: 1385470 (avg. 24.12 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.2% 2.0% 1.7% 0.8% 0.8% 0.8% 0.7% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 738534
Top 10 bandwidth usage (bytes/total in %):
13.6% 8.5% 6.0% 5.5% 4.9% 4.6% 2.3% 2.3% 2.3% 2.1%
# of IPv6 addresses: 1074
Top 10 bandwidth usage (bytes/total in %):
22.8% 9.9% 6.2% 5.5% 5.3% 4.9% 4.8% 4.8% 4.3% 4.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004142000.pktlen.png)
detailed numbers
[ 32- 63]: 5713220
[ 64- 127]: 9155510
[ 128- 255]: 2541959
[ 256- 511]: 1903771
[ 512- 1023]: 917304
[ 1024- 2047]: 13182552
Protocol Breakdown
![[protocol breakdown chart]](201004142000.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 33414316 (100.00%) 21724649562 (100.00%) 650.16
ip 33356312 ( 99.83%) 21715041762 ( 99.96%) 651.00
tcp 20694296 ( 61.93%) 15639456243 ( 71.99%) 755.74
http(s) 9007090 ( 26.96%) 12348006278 ( 56.84%) 1370.92
http(c) 5557571 ( 16.63%) 629782690 ( 2.90%) 113.32
squid 290050 ( 0.87%) 102199354 ( 0.47%) 352.35
smtp 521323 ( 1.56%) 114267695 ( 0.53%) 219.19
ftp 24317 ( 0.07%) 3063487 ( 0.01%) 125.98
pop3 17500 ( 0.05%) 8141123 ( 0.04%) 465.21
imap 4725 ( 0.01%) 3918822 ( 0.02%) 829.38
telnet 429 ( 0.00%) 37764 ( 0.00%) 88.03
ssh 1349560 ( 4.04%) 214733094 ( 0.99%) 159.11
dns 54446 ( 0.16%) 3738455 ( 0.02%) 68.66
bgp 145 ( 0.00%) 54068 ( 0.00%) 372.88
napster 422 ( 0.00%) 74669 ( 0.00%) 176.94
realaud 14 ( 0.00%) 2751 ( 0.00%) 196.50
rtsp 56939 ( 0.17%) 3600047 ( 0.02%) 63.23
icecast 43684 ( 0.13%) 23275021 ( 0.11%) 532.80
hotline 4 ( 0.00%) 256 ( 0.00%) 64.00
other 3766074 ( 11.27%) 2184560489 ( 10.06%) 580.06
udp 8597012 ( 25.73%) 4087188843 ( 18.81%) 475.42
dns 858655 ( 2.57%) 145212570 ( 0.67%) 169.12
realaud 8363 ( 0.03%) 5963457 ( 0.03%) 713.08
halflif 45 ( 0.00%) 5762 ( 0.00%) 128.04
starcra 276 ( 0.00%) 32042 ( 0.00%) 116.09
everque 672 ( 0.00%) 120277 ( 0.00%) 178.98
unreal 166 ( 0.00%) 28648 ( 0.00%) 172.58
quake 150 ( 0.00%) 20394 ( 0.00%) 135.96
cuseeme 25 ( 0.00%) 2216 ( 0.00%) 88.64
other 7728213 ( 23.13%) 3935601984 ( 18.12%) 509.25
icmp 942849 ( 2.82%) 132936635 ( 0.61%) 140.99
ipip 344 ( 0.00%) 43204 ( 0.00%) 125.59
ipsec 434 ( 0.00%) 81276 ( 0.00%) 187.27
ip6 3097274 ( 9.27%) 1851029036 ( 8.52%) 597.63
other 24103 ( 0.07%) 4306525 ( 0.02%) 178.67
frag 2060 ( 0.01%) 2070063 ( 0.01%) 1004.88
ip6 58004 ( 0.17%) 9607800 ( 0.04%) 165.64
tcp6 15697 ( 0.05%) 1728417 ( 0.01%) 110.11
http(s) 45 ( 0.00%) 23709 ( 0.00%) 526.87
http(c) 4477 ( 0.01%) 399240 ( 0.00%) 89.18
smtp 164 ( 0.00%) 62891 ( 0.00%) 383.48
ftp 2621 ( 0.01%) 273131 ( 0.00%) 104.21
imap 279 ( 0.00%) 31730 ( 0.00%) 113.73
ssh 3392 ( 0.01%) 338100 ( 0.00%) 99.68
dns 191 ( 0.00%) 50965 ( 0.00%) 266.83
bgp 117 ( 0.00%) 15451 ( 0.00%) 132.06
other 4411 ( 0.01%) 533200 ( 0.00%) 120.88
udp6 35478 ( 0.11%) 6963576 ( 0.03%) 196.28
dns 34667 ( 0.10%) 6864472 ( 0.03%) 198.01
other 811 ( 0.00%) 99104 ( 0.00%) 122.20
icmp6 6705 ( 0.02%) 827826 ( 0.00%) 123.46
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 94 ( 0.00%) 83901 ( 0.00%) 892.56
tcpdump file: 201004142000.dump.gz (869.36 MB)