Traffic Trace Info
DumpFile: 201004142030.dump
FileSize: 2374.58MB
Id: 201004142030
StartTime: Wed Apr 14 20:30:01 2010
EndTime: Wed Apr 14 20:45:01 2010
TotalTime: 899.40 seconds
TotalCapSize: 1859.12MB CapLen: 96 bytes
# of packets: 33780709 (21014.86MB)
AvgRate: 196.01Mbps stddev:16.14M
IP flow (unique src/dst pair) Information
# of flows: 1338595 (avg. 25.24 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.8% 1.8% 1.3% 0.8% 0.8% 0.8% 0.6% 0.6% 0.6% 0.6%
IP address Information
# of IPv4 addresses: 758829
Top 10 bandwidth usage (bytes/total in %):
13.2% 7.1% 6.1% 5.0% 4.6% 3.9% 3.9% 3.8% 3.8% 2.6%
# of IPv6 addresses: 1034
Top 10 bandwidth usage (bytes/total in %):
21.2% 7.5% 7.5% 5.7% 5.1% 4.9% 4.6% 4.5% 4.5% 4.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004142030.pktlen.png)
detailed numbers
[ 32- 63]: 5690098
[ 64- 127]: 9556097
[ 128- 255]: 2478668
[ 256- 511]: 1748193
[ 512- 1023]: 884181
[ 1024- 2047]: 13423472
Protocol Breakdown
![[protocol breakdown chart]](201004142030.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 33780709 (100.00%) 22035682393 (100.00%) 652.32
ip 33722471 ( 99.83%) 22025352824 ( 99.95%) 653.14
tcp 21641723 ( 64.07%) 16335726606 ( 74.13%) 754.83
http(s) 9629121 ( 28.50%) 13248853160 ( 60.12%) 1375.92
http(c) 6010643 ( 17.79%) 595572741 ( 2.70%) 99.09
squid 294703 ( 0.87%) 110195953 ( 0.50%) 373.92
smtp 461053 ( 1.36%) 83139062 ( 0.38%) 180.32
ftp 22801 ( 0.07%) 2264061 ( 0.01%) 99.30
pop3 14253 ( 0.04%) 11353024 ( 0.05%) 796.54
imap 1843 ( 0.01%) 618927 ( 0.00%) 335.83
telnet 611 ( 0.00%) 46045 ( 0.00%) 75.36
ssh 1414016 ( 4.19%) 216613590 ( 0.98%) 153.19
dns 56527 ( 0.17%) 3910911 ( 0.02%) 69.19
bgp 193 ( 0.00%) 91272 ( 0.00%) 472.91
napster 95 ( 0.00%) 11928 ( 0.00%) 125.56
realaud 16 ( 0.00%) 1534 ( 0.00%) 95.88
rtsp 18761 ( 0.06%) 1356262 ( 0.01%) 72.29
icecast 40695 ( 0.12%) 21339805 ( 0.10%) 524.38
hotline 1 ( 0.00%) 60 ( 0.00%) 60.00
other 3676386 ( 10.88%) 2040357971 ( 9.26%) 554.99
udp 8174218 ( 24.20%) 3903245833 ( 17.71%) 477.51
dns 839049 ( 2.48%) 141585298 ( 0.64%) 168.74
rip 8 ( 0.00%) 600 ( 0.00%) 75.00
realaud 12326 ( 0.04%) 12377019 ( 0.06%) 1004.14
halflif 85 ( 0.00%) 10298 ( 0.00%) 121.15
starcra 286 ( 0.00%) 32072 ( 0.00%) 112.14
everque 704 ( 0.00%) 130413 ( 0.00%) 185.25
unreal 141 ( 0.00%) 22332 ( 0.00%) 158.38
quake 69 ( 0.00%) 8212 ( 0.00%) 119.01
cuseeme 21 ( 0.00%) 1913 ( 0.00%) 91.10
other 7321146 ( 21.67%) 3748872984 ( 17.01%) 512.06
icmp 1040255 ( 3.08%) 195022943 ( 0.89%) 187.48
ipip 358 ( 0.00%) 44400 ( 0.00%) 124.02
ipsec 435 ( 0.00%) 81618 ( 0.00%) 187.63
ip6 2811147 ( 8.32%) 1581813928 ( 7.18%) 562.69
other 54335 ( 0.16%) 9417496 ( 0.04%) 173.32
frag 1735 ( 0.01%) 1767532 ( 0.01%) 1018.75
ip6 58238 ( 0.17%) 10329569 ( 0.05%) 177.37
tcp6 16519 ( 0.05%) 2275966 ( 0.01%) 137.78
http(s) 226 ( 0.00%) 179756 ( 0.00%) 795.38
http(c) 4952 ( 0.01%) 486149 ( 0.00%) 98.17
smtp 186 ( 0.00%) 46901 ( 0.00%) 252.16
ftp 2653 ( 0.01%) 273834 ( 0.00%) 103.22
imap 326 ( 0.00%) 35479 ( 0.00%) 108.83
ssh 3252 ( 0.01%) 276120 ( 0.00%) 84.91
dns 155 ( 0.00%) 36702 ( 0.00%) 236.79
bgp 114 ( 0.00%) 16343 ( 0.00%) 143.36
other 4655 ( 0.01%) 924682 ( 0.00%) 198.64
udp6 35088 ( 0.10%) 7201913 ( 0.03%) 205.25
dns 34315 ( 0.10%) 7108557 ( 0.03%) 207.16
other 773 ( 0.00%) 93356 ( 0.00%) 120.77
icmp6 6535 ( 0.02%) 788550 ( 0.00%) 120.67
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 66 ( 0.00%) 59060 ( 0.00%) 894.85
tcpdump file: 201004142030.dump.gz (884.75 MB)