Traffic Trace Info
DumpFile: 201004150315.dump
FileSize: 2015.60MB
Id: 201004150315
StartTime: Thu Apr 15 03:15:01 2010
EndTime: Thu Apr 15 03:30:00 2010
TotalTime: 899.43 seconds
TotalCapSize: 1583.14MB CapLen: 96 bytes
# of packets: 28340975 (18485.42MB)
AvgRate: 172.42Mbps stddev:14.14M
IP flow (unique src/dst pair) Information
# of flows: 1211773 (avg. 23.39 pkts/flow)
Top 10 big flow size (bytes/total in %):
1.5% 1.4% 1.0% 0.8% 0.8% 0.7% 0.7% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 663402
Top 10 bandwidth usage (bytes/total in %):
17.3% 10.6% 8.3% 6.5% 6.3% 6.2% 2.5% 2.4% 2.4% 2.0%
# of IPv6 addresses: 983
Top 10 bandwidth usage (bytes/total in %):
29.8% 7.4% 7.1% 6.6% 6.0% 5.1% 5.0% 4.9% 3.0% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004150315.pktlen.png)
detailed numbers
[ 32- 63]: 4635654
[ 64- 127]: 7424015
[ 128- 255]: 2014089
[ 256- 511]: 1668152
[ 512- 1023]: 733695
[ 1024- 2047]: 11865370
Protocol Breakdown
![[protocol breakdown chart]](201004150315.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 28340975 (100.00%) 19383364868 (100.00%) 683.93
ip 28284977 ( 99.80%) 19374974732 ( 99.96%) 684.99
tcp 16868210 ( 59.52%) 13290550796 ( 68.57%) 787.91
http(s) 8123568 ( 28.66%) 11290881785 ( 58.25%) 1389.89
http(c) 4179421 ( 14.75%) 329075054 ( 1.70%) 78.74
squid 343064 ( 1.21%) 95427189 ( 0.49%) 278.16
smtp 323876 ( 1.14%) 61098312 ( 0.32%) 188.65
nntp 8 ( 0.00%) 606 ( 0.00%) 75.75
ftp 7750 ( 0.03%) 753069 ( 0.00%) 97.17
pop3 8573 ( 0.03%) 5234117 ( 0.03%) 610.54
imap 668 ( 0.00%) 106433 ( 0.00%) 159.33
telnet 1429 ( 0.01%) 111704 ( 0.00%) 78.17
ssh 691001 ( 2.44%) 103268622 ( 0.53%) 149.45
dns 55253 ( 0.19%) 5864686 ( 0.03%) 106.14
bgp 154 ( 0.00%) 49995 ( 0.00%) 324.64
napster 22 ( 0.00%) 4138 ( 0.00%) 188.09
realaud 8 ( 0.00%) 840 ( 0.00%) 105.00
rtsp 2617 ( 0.01%) 2667226 ( 0.01%) 1019.19
icecast 8441 ( 0.03%) 559384 ( 0.00%) 66.27
hotline 2 ( 0.00%) 124 ( 0.00%) 62.00
other 3122353 ( 11.02%) 1395447392 ( 7.20%) 446.92
udp 6950565 ( 24.52%) 3778301219 ( 19.49%) 543.60
dns 725447 ( 2.56%) 125081715 ( 0.65%) 172.42
realaud 754 ( 0.00%) 49887 ( 0.00%) 66.16
halflif 188 ( 0.00%) 30209 ( 0.00%) 160.69
starcra 277 ( 0.00%) 33132 ( 0.00%) 119.61
everque 637 ( 0.00%) 125464 ( 0.00%) 196.96
unreal 185 ( 0.00%) 30584 ( 0.00%) 165.32
quake 16 ( 0.00%) 1908 ( 0.00%) 119.25
cuseeme 5 ( 0.00%) 466 ( 0.00%) 93.20
other 6222273 ( 21.96%) 3652728338 ( 18.84%) 587.04
icmp 1031796 ( 3.64%) 182759746 ( 0.94%) 177.13
ipip 353 ( 0.00%) 44470 ( 0.00%) 125.98
ipsec 12555 ( 0.04%) 3502664 ( 0.02%) 278.99
ip6 3375789 ( 11.91%) 2071715054 ( 10.69%) 613.70
other 45709 ( 0.16%) 48100783 ( 0.25%) 1052.33
frag 2563 ( 0.01%) 2471169 ( 0.01%) 964.17
ip6 55998 ( 0.20%) 8390136 ( 0.04%) 149.83
tcp6 21418 ( 0.08%) 2319618 ( 0.01%) 108.30
http(s) 91 ( 0.00%) 62973 ( 0.00%) 692.01
http(c) 11063 ( 0.04%) 974346 ( 0.01%) 88.07
smtp 207 ( 0.00%) 67599 ( 0.00%) 326.57
ftp 2138 ( 0.01%) 218628 ( 0.00%) 102.26
imap 77 ( 0.00%) 8026 ( 0.00%) 104.23
ssh 3262 ( 0.01%) 273364 ( 0.00%) 83.80
dns 36 ( 0.00%) 7046 ( 0.00%) 195.72
bgp 121 ( 0.00%) 16097 ( 0.00%) 133.03
other 4423 ( 0.02%) 691539 ( 0.00%) 156.35
udp6 27658 ( 0.10%) 5180914 ( 0.03%) 187.32
dns 27022 ( 0.10%) 5111628 ( 0.03%) 189.17
other 636 ( 0.00%) 69286 ( 0.00%) 108.94
icmp6 6816 ( 0.02%) 821335 ( 0.00%) 120.50
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 76 ( 0.00%) 64189 ( 0.00%) 844.59
tcpdump file: 201004150315.dump.gz (734.77 MB)