Traffic Trace Info
DumpFile: 201004150300.dump
FileSize: 1883.87MB
Id: 201004150300
StartTime: Thu Apr 15 03:00:00 2010
EndTime: Thu Apr 15 03:15:01 2010
TotalTime: 900.35 seconds
TotalCapSize: 1474.80MB CapLen: 96 bytes
# of packets: 26807885 (17671.07MB)
AvgRate: 176.03Mbps stddev:30.91M
IP flow (unique src/dst pair) Information
# of flows: 1130303 (avg. 23.72 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.2% 1.5% 1.4% 1.3% 1.1% 1.1% 1.0% 0.9% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 625720
Top 10 bandwidth usage (bytes/total in %):
16.8% 8.1% 7.4% 7.1% 6.3% 5.9% 5.7% 3.2% 2.4% 2.3%
# of IPv6 addresses: 1002
Top 10 bandwidth usage (bytes/total in %):
29.3% 8.0% 7.0% 5.7% 5.2% 5.1% 4.0% 3.8% 3.0% 2.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004150300.pktlen.png)
detailed numbers
[ 32- 63]: 4376714
[ 64- 127]: 7028166
[ 128- 255]: 1852418
[ 256- 511]: 1572004
[ 512- 1023]: 668368
[ 1024- 2047]: 11310215
Protocol Breakdown
![[protocol breakdown chart]](201004150300.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 26807885 (100.00%) 18529455628 (100.00%) 691.19
ip 26757763 ( 99.81%) 18521762265 ( 99.96%) 692.20
tcp 16611157 ( 61.96%) 13389076284 ( 72.26%) 806.03
http(s) 8137107 ( 30.35%) 11455844387 ( 61.83%) 1407.85
http(c) 4236933 ( 15.80%) 332225387 ( 1.79%) 78.41
squid 313236 ( 1.17%) 132360423 ( 0.71%) 422.56
smtp 353841 ( 1.32%) 81767085 ( 0.44%) 231.08
ftp 9396 ( 0.04%) 960283 ( 0.01%) 102.20
pop3 10997 ( 0.04%) 7062967 ( 0.04%) 642.26
imap 955 ( 0.00%) 310423 ( 0.00%) 325.05
telnet 1955 ( 0.01%) 154974 ( 0.00%) 79.27
ssh 661333 ( 2.47%) 99790044 ( 0.54%) 150.89
dns 51494 ( 0.19%) 6854839 ( 0.04%) 133.12
bgp 163 ( 0.00%) 63400 ( 0.00%) 388.96
napster 12 ( 0.00%) 1159 ( 0.00%) 96.58
realaud 8 ( 0.00%) 552 ( 0.00%) 69.00
rtsp 2358 ( 0.01%) 2395060 ( 0.01%) 1015.72
icecast 7598 ( 0.03%) 507046 ( 0.00%) 66.73
hotline 6 ( 0.00%) 392 ( 0.00%) 65.33
other 2823763 ( 10.53%) 1268777743 ( 6.85%) 449.32
udp 6708059 ( 25.02%) 3553660288 ( 19.18%) 529.76
dns 707126 ( 2.64%) 122633363 ( 0.66%) 173.43
rip 8 ( 0.00%) 600 ( 0.00%) 75.00
realaud 862 ( 0.00%) 53714 ( 0.00%) 62.31
halflif 153 ( 0.00%) 24017 ( 0.00%) 156.97
starcra 240 ( 0.00%) 28550 ( 0.00%) 118.96
everque 3101 ( 0.01%) 2530941 ( 0.01%) 816.17
unreal 194 ( 0.00%) 34141 ( 0.00%) 175.98
quake 16 ( 0.00%) 1677 ( 0.00%) 104.81
cuseeme 3 ( 0.00%) 295 ( 0.00%) 98.33
other 5996043 ( 22.37%) 3428186417 ( 18.50%) 571.74
icmp 942576 ( 3.52%) 171873472 ( 0.93%) 182.34
ipip 307 ( 0.00%) 36450 ( 0.00%) 118.73
ipsec 40374 ( 0.15%) 12780106 ( 0.07%) 316.54
ip6 2437292 ( 9.09%) 1379054946 ( 7.44%) 565.81
other 17998 ( 0.07%) 15280719 ( 0.08%) 849.02
frag 1287 ( 0.00%) 1344999 ( 0.01%) 1045.07
ip6 50122 ( 0.19%) 7693363 ( 0.04%) 153.49
tcp6 17910 ( 0.07%) 1867203 ( 0.01%) 104.25
http(s) 33 ( 0.00%) 17744 ( 0.00%) 537.70
http(c) 8096 ( 0.03%) 730609 ( 0.00%) 90.24
smtp 196 ( 0.00%) 44537 ( 0.00%) 227.23
ftp 2033 ( 0.01%) 207980 ( 0.00%) 102.30
imap 244 ( 0.00%) 28030 ( 0.00%) 114.88
ssh 2921 ( 0.01%) 242194 ( 0.00%) 82.91
dns 98 ( 0.00%) 35491 ( 0.00%) 362.15
bgp 111 ( 0.00%) 15982 ( 0.00%) 143.98
other 4178 ( 0.02%) 544636 ( 0.00%) 130.36
udp6 25901 ( 0.10%) 5009562 ( 0.03%) 193.41
dns 25304 ( 0.09%) 4938274 ( 0.03%) 195.16
other 597 ( 0.00%) 71288 ( 0.00%) 119.41
icmp6 6212 ( 0.02%) 748700 ( 0.00%) 120.52
pim6 25 ( 0.00%) 3400 ( 0.00%) 136.00
other6 74 ( 0.00%) 64498 ( 0.00%) 871.59
tcpdump file: 201004150300.dump.gz (694.76 MB)