Traffic Trace Info
DumpFile: 201004142345.dump
FileSize: 2417.85MB
Id: 201004142345
StartTime: Wed Apr 14 23:45:01 2010
EndTime: Thu Apr 15 00:00:01 2010
TotalTime: 900.33 seconds
TotalCapSize: 1889.88MB CapLen: 96 bytes
# of packets: 34575622 (21992.70MB)
AvgRate: 204.93Mbps stddev:14.76M
IP flow (unique src/dst pair) Information
# of flows: 1329582 (avg. 26.00 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.2% 1.5% 1.4% 0.9% 0.7% 0.7% 0.5% 0.5% 0.5% 0.5%
IP address Information
# of IPv4 addresses: 782566
Top 10 bandwidth usage (bytes/total in %):
13.8% 7.5% 6.6% 6.6% 5.9% 5.7% 5.3% 4.8% 3.1% 2.5%
# of IPv6 addresses: 1007
Top 10 bandwidth usage (bytes/total in %):
23.8% 10.6% 6.9% 6.5% 6.1% 5.9% 4.3% 4.2% 3.5% 3.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004142345.pktlen.png)
detailed numbers
[ 32- 63]: 6178348
[ 64- 127]: 9553814
[ 128- 255]: 2307844
[ 256- 511]: 1631667
[ 512- 1023]: 842061
[ 1024- 2047]: 14061888
Protocol Breakdown
![[protocol breakdown chart]](201004142345.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 34575622 (100.00%) 23061020733 (100.00%) 666.97
ip 34518726 ( 99.84%) 23051815715 ( 99.96%) 667.81
tcp 23213083 ( 67.14%) 17891749804 ( 77.58%) 770.76
http(s) 10858725 ( 31.41%) 14830458084 ( 64.31%) 1365.76
http(c) 6317589 ( 18.27%) 588580490 ( 2.55%) 93.17
squid 373008 ( 1.08%) 166375036 ( 0.72%) 446.04
smtp 440009 ( 1.27%) 102019822 ( 0.44%) 231.86
ftp 18064 ( 0.05%) 1688548 ( 0.01%) 93.48
pop3 13211 ( 0.04%) 9808506 ( 0.04%) 742.45
imap 5661 ( 0.02%) 4707483 ( 0.02%) 831.56
telnet 214 ( 0.00%) 33538 ( 0.00%) 156.72
ssh 1277231 ( 3.69%) 191737531 ( 0.83%) 150.12
dns 56643 ( 0.16%) 3890574 ( 0.02%) 68.69
bgp 167 ( 0.00%) 65930 ( 0.00%) 394.79
napster 164 ( 0.00%) 74557 ( 0.00%) 454.62
realaud 36 ( 0.00%) 5953 ( 0.00%) 165.36
rtsp 281 ( 0.00%) 66353 ( 0.00%) 236.13
icecast 24890 ( 0.07%) 10110526 ( 0.04%) 406.21
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 3827178 ( 11.07%) 1982126147 ( 8.60%) 517.91
udp 7966826 ( 23.04%) 3860095546 ( 16.74%) 484.52
dns 820879 ( 2.37%) 142381631 ( 0.62%) 173.45
realaud 926 ( 0.00%) 57132 ( 0.00%) 61.70
halflif 129 ( 0.00%) 17915 ( 0.00%) 138.88
starcra 271 ( 0.00%) 29575 ( 0.00%) 109.13
everque 9279 ( 0.03%) 761869 ( 0.00%) 82.11
unreal 132 ( 0.00%) 20176 ( 0.00%) 152.85
quake 59 ( 0.00%) 4838 ( 0.00%) 82.00
cuseeme 5 ( 0.00%) 511 ( 0.00%) 102.20
other 7134657 ( 20.63%) 3716565461 ( 16.12%) 520.92
icmp 946682 ( 2.74%) 151116049 ( 0.66%) 159.63
ipip 356 ( 0.00%) 42982 ( 0.00%) 120.74
ipsec 727 ( 0.00%) 119210 ( 0.00%) 163.98
ip6 2225920 ( 6.44%) 1129856874 ( 4.90%) 507.59
other 165132 ( 0.48%) 18835250 ( 0.08%) 114.06
frag 2499 ( 0.01%) 2515586 ( 0.01%) 1006.64
ip6 56896 ( 0.16%) 9205018 ( 0.04%) 161.79
tcp6 16124 ( 0.05%) 2037642 ( 0.01%) 126.37
http(s) 95 ( 0.00%) 86524 ( 0.00%) 910.78
http(c) 5258 ( 0.02%) 490444 ( 0.00%) 93.28
smtp 418 ( 0.00%) 170227 ( 0.00%) 407.24
ftp 2191 ( 0.01%) 232192 ( 0.00%) 105.98
imap 400 ( 0.00%) 46477 ( 0.00%) 116.19
ssh 3623 ( 0.01%) 494174 ( 0.00%) 136.40
dns 115 ( 0.00%) 28319 ( 0.00%) 246.25
bgp 110 ( 0.00%) 14018 ( 0.00%) 127.44
other 3914 ( 0.01%) 475267 ( 0.00%) 121.43
udp6 33059 ( 0.10%) 6110875 ( 0.03%) 184.85
dns 32284 ( 0.09%) 6015029 ( 0.03%) 186.32
other 775 ( 0.00%) 95846 ( 0.00%) 123.67
icmp6 7646 ( 0.02%) 1018581 ( 0.00%) 133.22
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 37 ( 0.00%) 33840 ( 0.00%) 914.59
tcpdump file: 201004142345.dump.gz (905.02 MB)