Traffic Trace Info
DumpFile: 201004142230.dump
FileSize: 2364.49MB
Id: 201004142230
StartTime: Wed Apr 14 22:30:00 2010
EndTime: Wed Apr 14 22:45:00 2010
TotalTime: 900.01 seconds
TotalCapSize: 1852.48MB CapLen: 96 bytes
# of packets: 33554421 (21899.21MB)
AvgRate: 204.12Mbps stddev:26.20M
IP flow (unique src/dst pair) Information
# of flows: 1111800 (avg. 30.18 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.1% 2.5% 1.3% 1.2% 0.8% 0.7% 0.7% 0.6% 0.6% 0.5%
IP address Information
# of IPv4 addresses: 602274
Top 10 bandwidth usage (bytes/total in %):
11.1% 8.9% 6.2% 5.6% 5.1% 4.9% 4.6% 3.2% 3.2% 2.7%
# of IPv6 addresses: 1007
Top 10 bandwidth usage (bytes/total in %):
25.8% 8.9% 7.0% 7.0% 5.6% 5.5% 4.7% 4.5% 4.1% 3.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004142230.pktlen.png)
detailed numbers
[ 32- 63]: 5230864
[ 64- 127]: 9652406
[ 128- 255]: 2107035
[ 256- 511]: 1653836
[ 512- 1023]: 915690
[ 1024- 2047]: 13994590
Protocol Breakdown
![[protocol breakdown chart]](201004142230.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 33554421 (100.00%) 22962986566 (100.00%) 684.35
ip 33502341 ( 99.84%) 22954511221 ( 99.96%) 685.16
tcp 22441374 ( 66.88%) 17955731012 ( 78.19%) 800.12
http(s) 10421756 ( 31.06%) 14361346627 ( 62.54%) 1378.02
http(c) 5972119 ( 17.80%) 592894969 ( 2.58%) 99.28
squid 318933 ( 0.95%) 145081124 ( 0.63%) 454.90
smtp 443809 ( 1.32%) 137407501 ( 0.60%) 309.61
nntp 6 ( 0.00%) 372 ( 0.00%) 62.00
ftp 27982 ( 0.08%) 2666870 ( 0.01%) 95.31
pop3 13444 ( 0.04%) 8598726 ( 0.04%) 639.60
imap 2305 ( 0.01%) 1043453 ( 0.00%) 452.69
telnet 190 ( 0.00%) 20939 ( 0.00%) 110.21
ssh 1106483 ( 3.30%) 163339870 ( 0.71%) 147.62
dns 55410 ( 0.17%) 3806787 ( 0.02%) 68.70
bgp 152 ( 0.00%) 52666 ( 0.00%) 346.49
napster 38 ( 0.00%) 10664 ( 0.00%) 280.63
realaud 21 ( 0.00%) 4540 ( 0.00%) 216.19
rtsp 171 ( 0.00%) 39317 ( 0.00%) 229.92
icecast 28662 ( 0.09%) 16263168 ( 0.07%) 567.41
hotline 3 ( 0.00%) 198 ( 0.00%) 66.00
other 4049886 ( 12.07%) 2523152981 ( 10.99%) 623.02
udp 7650723 ( 22.80%) 3510005768 ( 15.29%) 458.78
dns 819802 ( 2.44%) 141779733 ( 0.62%) 172.94
realaud 7025 ( 0.02%) 5633234 ( 0.02%) 801.88
halflif 150 ( 0.00%) 18846 ( 0.00%) 125.64
starcra 266 ( 0.00%) 31254 ( 0.00%) 117.50
everque 670 ( 0.00%) 119743 ( 0.00%) 178.72
unreal 170 ( 0.00%) 28006 ( 0.00%) 164.74
quake 92 ( 0.00%) 7713 ( 0.00%) 83.84
cuseeme 9 ( 0.00%) 920 ( 0.00%) 102.22
other 6822134 ( 20.33%) 3362161155 ( 14.64%) 492.83
icmp 934144 ( 2.78%) 163979302 ( 0.71%) 175.54
ipip 331 ( 0.00%) 39862 ( 0.00%) 120.43
ipsec 439 ( 0.00%) 82202 ( 0.00%) 187.25
ip6 2408003 ( 7.18%) 1306901098 ( 5.69%) 542.73
other 67327 ( 0.20%) 17771977 ( 0.08%) 263.97
frag 1661 ( 0.00%) 1745072 ( 0.01%) 1050.62
ip6 52080 ( 0.16%) 8475345 ( 0.04%) 162.74
tcp6 14768 ( 0.04%) 1621752 ( 0.01%) 109.82
http(s) 98 ( 0.00%) 84653 ( 0.00%) 863.81
http(c) 4556 ( 0.01%) 422158 ( 0.00%) 92.66
smtp 199 ( 0.00%) 146562 ( 0.00%) 736.49
ftp 2667 ( 0.01%) 276861 ( 0.00%) 103.81
imap 258 ( 0.00%) 29395 ( 0.00%) 113.93
ssh 3257 ( 0.01%) 275466 ( 0.00%) 84.58
dns 147 ( 0.00%) 36001 ( 0.00%) 244.90
bgp 123 ( 0.00%) 16526 ( 0.00%) 134.36
other 3463 ( 0.01%) 334130 ( 0.00%) 96.49
udp6 30435 ( 0.09%) 5970654 ( 0.03%) 196.18
dns 30104 ( 0.09%) 5916664 ( 0.03%) 196.54
other 331 ( 0.00%) 53990 ( 0.00%) 163.11
icmp6 6789 ( 0.02%) 826872 ( 0.00%) 121.80
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 57 ( 0.00%) 51851 ( 0.00%) 909.67
tcpdump file: 201004142230.dump.gz (883.02 MB)