Traffic Trace Info
DumpFile: 201004150430.dump
FileSize: 1783.16MB
Id: 201004150430
StartTime: Thu Apr 15 04:30:01 2010
EndTime: Thu Apr 15 04:45:01 2010
TotalTime: 900.23 seconds
TotalCapSize: 1396.28MB CapLen: 96 bytes
# of packets: 25353776 (16362.28MB)
AvgRate: 152.49Mbps stddev:11.27M
IP flow (unique src/dst pair) Information
# of flows: 1159002 (avg. 21.88 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.2% 2.0% 0.9% 0.9% 0.8% 0.7% 0.7% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 634434
Top 10 bandwidth usage (bytes/total in %):
20.3% 10.4% 8.5% 6.9% 6.9% 6.2% 2.9% 2.8% 2.8% 2.2%
# of IPv6 addresses: 908
Top 10 bandwidth usage (bytes/total in %):
31.6% 7.7% 7.5% 7.5% 6.7% 5.8% 3.9% 3.6% 3.3% 3.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004150430.pktlen.png)
detailed numbers
[ 32- 63]: 3957114
[ 64- 127]: 6612866
[ 128- 255]: 2079630
[ 256- 511]: 1533070
[ 512- 1023]: 650008
[ 1024- 2047]: 10521088
Protocol Breakdown
![[protocol breakdown chart]](201004150430.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 25353776 (100.00%) 17157089141 (100.00%) 676.71
ip 25299783 ( 99.79%) 17149169366 ( 99.95%) 677.84
tcp 14467984 ( 57.06%) 11096102890 ( 64.67%) 766.94
http(s) 6670711 ( 26.31%) 9244772402 ( 53.88%) 1385.88
http(c) 3482158 ( 13.73%) 275200823 ( 1.60%) 79.03
squid 260982 ( 1.03%) 82494153 ( 0.48%) 316.09
smtp 319967 ( 1.26%) 53196455 ( 0.31%) 166.26
ftp 8344 ( 0.03%) 868019 ( 0.01%) 104.03
pop3 10252 ( 0.04%) 7242934 ( 0.04%) 706.49
imap 5173 ( 0.02%) 6518099 ( 0.04%) 1260.02
telnet 2328 ( 0.01%) 186668 ( 0.00%) 80.18
ssh 604689 ( 2.39%) 89372965 ( 0.52%) 147.80
dns 51362 ( 0.20%) 3509581 ( 0.02%) 68.33
bgp 164 ( 0.00%) 54722 ( 0.00%) 333.67
napster 5 ( 0.00%) 302 ( 0.00%) 60.40
rtsp 364 ( 0.00%) 81241 ( 0.00%) 223.19
icecast 8382 ( 0.03%) 552394 ( 0.00%) 65.90
other 3043102 ( 12.00%) 1332052072 ( 7.76%) 437.73
udp 6888677 ( 27.17%) 4058462022 ( 23.65%) 589.15
dns 653745 ( 2.58%) 113566287 ( 0.66%) 173.72
realaud 17 ( 0.00%) 1799 ( 0.00%) 105.82
halflif 175 ( 0.00%) 28190 ( 0.00%) 161.09
starcra 287 ( 0.00%) 32322 ( 0.00%) 112.62
everque 475 ( 0.00%) 79077 ( 0.00%) 166.48
unreal 242 ( 0.00%) 41441 ( 0.00%) 171.24
quake 43 ( 0.00%) 3634 ( 0.00%) 84.51
cuseeme 15 ( 0.00%) 1672 ( 0.00%) 111.47
other 6233294 ( 24.59%) 3944509061 ( 22.99%) 632.81
icmp 1047339 ( 4.13%) 193552718 ( 1.13%) 184.80
ipip 346 ( 0.00%) 41966 ( 0.00%) 121.29
ipsec 1435 ( 0.01%) 428122 ( 0.00%) 298.34
ip6 2884536 ( 11.38%) 1797161542 ( 10.47%) 623.03
other 9466 ( 0.04%) 3420106 ( 0.02%) 361.30
frag 1639 ( 0.01%) 1655310 ( 0.01%) 1009.95
ip6 53993 ( 0.21%) 7919775 ( 0.05%) 146.68
tcp6 19225 ( 0.08%) 1829899 ( 0.01%) 95.18
http(s) 18 ( 0.00%) 7366 ( 0.00%) 409.22
http(c) 7974 ( 0.03%) 680011 ( 0.00%) 85.28
smtp 220 ( 0.00%) 101122 ( 0.00%) 459.65
ftp 2255 ( 0.01%) 223843 ( 0.00%) 99.27
ssh 3228 ( 0.01%) 267668 ( 0.00%) 82.92
dns 69 ( 0.00%) 27751 ( 0.00%) 402.19
bgp 120 ( 0.00%) 16946 ( 0.00%) 141.22
other 5341 ( 0.02%) 505192 ( 0.00%) 94.59
udp6 27733 ( 0.11%) 5188993 ( 0.03%) 187.11
dns 27529 ( 0.11%) 5156456 ( 0.03%) 187.31
other 204 ( 0.00%) 32537 ( 0.00%) 159.50
icmp6 6926 ( 0.03%) 828473 ( 0.00%) 119.62
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 78 ( 0.00%) 68194 ( 0.00%) 874.28
tcpdump file: 201004150430.dump.gz (646.38 MB)