Traffic Trace Info
DumpFile: 201004150245.dump
FileSize: 2023.61MB
Id: 201004150245
StartTime: Thu Apr 15 02:45:00 2010
EndTime: Thu Apr 15 03:00:00 2010
TotalTime: 900.06 seconds
TotalCapSize: 1581.35MB CapLen: 96 bytes
# of packets: 28983001 (18595.05MB)
AvgRate: 173.32Mbps stddev:12.83M
IP flow (unique src/dst pair) Information
# of flows: 1438263 (avg. 20.15 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.7% 1.5% 1.3% 1.2% 1.2% 1.2% 0.9% 0.9% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 827941
Top 10 bandwidth usage (bytes/total in %):
17.3% 7.7% 7.3% 6.9% 6.4% 5.7% 5.6% 3.0% 2.6% 2.5%
# of IPv6 addresses: 978
Top 10 bandwidth usage (bytes/total in %):
43.0% 43.0% 17.9% 4.2% 3.6% 3.2% 3.2% 2.7% 2.2% 2.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004150245.pktlen.png)
detailed numbers
[ 32- 63]: 4977340
[ 64- 127]: 7751953
[ 128- 255]: 1978144
[ 256- 511]: 1647035
[ 512- 1023]: 710246
[ 1024- 2047]: 11918283
Protocol Breakdown
![[protocol breakdown chart]](201004150245.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 28983001 (100.00%) 19498324775 (100.00%) 672.75
ip 28926896 ( 99.81%) 19484316392 ( 99.93%) 673.57
tcp 17812688 ( 61.46%) 13804416904 ( 70.80%) 774.98
http(s) 8441765 ( 29.13%) 11516171343 ( 59.06%) 1364.19
http(c) 4324469 ( 14.92%) 328882659 ( 1.69%) 76.05
squid 313185 ( 1.08%) 134488221 ( 0.69%) 429.42
smtp 377430 ( 1.30%) 82407334 ( 0.42%) 218.34
ftp 11611 ( 0.04%) 1458866 ( 0.01%) 125.65
pop3 9705 ( 0.03%) 6093779 ( 0.03%) 627.90
imap 1214 ( 0.00%) 437941 ( 0.00%) 360.74
telnet 2991 ( 0.01%) 212265 ( 0.00%) 70.97
ssh 780403 ( 2.69%) 116286902 ( 0.60%) 149.01
dns 56704 ( 0.20%) 6369308 ( 0.03%) 112.33
bgp 174 ( 0.00%) 69066 ( 0.00%) 396.93
napster 41 ( 0.00%) 3761 ( 0.00%) 91.73
realaud 8 ( 0.00%) 502 ( 0.00%) 62.75
rtsp 2604 ( 0.01%) 2660069 ( 0.01%) 1021.53
icecast 8328 ( 0.03%) 549160 ( 0.00%) 65.94
hotline 10 ( 0.00%) 825 ( 0.00%) 82.50
other 3482042 ( 12.01%) 1608324663 ( 8.25%) 461.89
udp 7501148 ( 25.88%) 4011809787 ( 20.58%) 534.83
dns 735406 ( 2.54%) 130635291 ( 0.67%) 177.64
realaud 982 ( 0.00%) 61152 ( 0.00%) 62.27
halflif 160 ( 0.00%) 24705 ( 0.00%) 154.41
starcra 266 ( 0.00%) 27169 ( 0.00%) 102.14
everque 2742 ( 0.01%) 2231428 ( 0.01%) 813.80
unreal 162 ( 0.00%) 23258 ( 0.00%) 143.57
quake 21 ( 0.00%) 1908 ( 0.00%) 90.86
cuseeme 5 ( 0.00%) 435 ( 0.00%) 87.00
other 6760995 ( 23.33%) 3878587174 ( 19.89%) 573.67
icmp 1020204 ( 3.52%) 180023135 ( 0.92%) 176.46
ipip 356 ( 0.00%) 44052 ( 0.00%) 123.74
ipsec 55195 ( 0.19%) 15993534 ( 0.08%) 289.76
ip6 2437098 ( 8.41%) 1351446345 ( 6.93%) 554.53
other 100207 ( 0.35%) 120582635 ( 0.62%) 1203.34
frag 1939 ( 0.01%) 1960059 ( 0.01%) 1010.86
ip6 56105 ( 0.19%) 14008383 ( 0.07%) 249.68
tcp6 21919 ( 0.08%) 8058354 ( 0.04%) 367.64
http(s) 4869 ( 0.02%) 6037682 ( 0.03%) 1240.03
http(c) 5628 ( 0.02%) 496702 ( 0.00%) 88.26
smtp 564 ( 0.00%) 111334 ( 0.00%) 197.40
ftp 2475 ( 0.01%) 251203 ( 0.00%) 101.50
imap 350 ( 0.00%) 41274 ( 0.00%) 117.93
ssh 3233 ( 0.01%) 268430 ( 0.00%) 83.03
dns 107 ( 0.00%) 27638 ( 0.00%) 258.30
bgp 116 ( 0.00%) 16713 ( 0.00%) 144.08
other 4577 ( 0.02%) 807378 ( 0.00%) 176.40
udp6 27040 ( 0.09%) 5051744 ( 0.03%) 186.82
dns 26302 ( 0.09%) 4962452 ( 0.03%) 188.67
other 738 ( 0.00%) 89292 ( 0.00%) 120.99
icmp6 7067 ( 0.02%) 851802 ( 0.00%) 120.53
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 49 ( 0.00%) 42403 ( 0.00%) 865.37
tcpdump file: 201004150245.dump.gz (754.39 MB)