Traffic Trace Info
DumpFile: 201004150745.dump
FileSize: 1713.12MB
Id: 201004150745
StartTime: Thu Apr 15 07:45:01 2010
EndTime: Thu Apr 15 08:00:01 2010
TotalTime: 900.26 seconds
TotalCapSize: 1342.85MB CapLen: 96 bytes
# of packets: 24265338 (15086.55MB)
AvgRate: 140.58Mbps stddev:12.02M
IP flow (unique src/dst pair) Information
# of flows: 856176 (avg. 28.34 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.1% 2.0% 1.8% 1.6% 1.5% 1.0% 0.9% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 472033
Top 10 bandwidth usage (bytes/total in %):
24.6% 16.0% 5.3% 5.2% 4.6% 4.3% 3.9% 3.8% 3.3% 2.5%
# of IPv6 addresses: 880
Top 10 bandwidth usage (bytes/total in %):
29.4% 11.3% 7.3% 7.0% 6.4% 5.8% 5.6% 4.5% 3.5% 2.9%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004150745.pktlen.png)
detailed numbers
[ 32- 63]: 2893550
[ 64- 127]: 6657422
[ 128- 255]: 2846194
[ 256- 511]: 1612397
[ 512- 1023]: 621197
[ 1024- 2047]: 9634578
Protocol Breakdown
![[protocol breakdown chart]](201004150745.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 24265338 (100.00%) 15819393450 (100.00%) 651.93
ip 24210334 ( 99.77%) 15811258964 ( 99.95%) 653.08
tcp 11204329 ( 46.17%) 8296093521 ( 52.44%) 740.44
http(s) 5008722 ( 20.64%) 6852103893 ( 43.31%) 1368.03
http(c) 2791070 ( 11.50%) 248956246 ( 1.57%) 89.20
squid 220488 ( 0.91%) 85426426 ( 0.54%) 387.44
smtp 338001 ( 1.39%) 65949839 ( 0.42%) 195.12
nntp 87 ( 0.00%) 7390 ( 0.00%) 84.94
ftp 8615 ( 0.04%) 904178 ( 0.01%) 104.95
pop3 11479 ( 0.05%) 8902874 ( 0.06%) 775.58
imap 2551 ( 0.01%) 1582802 ( 0.01%) 620.46
telnet 502 ( 0.00%) 52650 ( 0.00%) 104.88
ssh 663650 ( 2.73%) 92927945 ( 0.59%) 140.03
dns 84252 ( 0.35%) 10932400 ( 0.07%) 129.76
bgp 144 ( 0.00%) 51238 ( 0.00%) 355.82
napster 15 ( 0.00%) 1340 ( 0.00%) 89.33
realaud 6 ( 0.00%) 550 ( 0.00%) 91.67
rtsp 237 ( 0.00%) 52653 ( 0.00%) 222.16
icecast 8501 ( 0.04%) 568226 ( 0.00%) 66.84
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 2066003 ( 8.51%) 927672505 ( 5.86%) 449.02
udp 8360355 ( 34.45%) 4835348752 ( 30.57%) 578.37
dns 616347 ( 2.54%) 112618217 ( 0.71%) 182.72
realaud 27 ( 0.00%) 2631 ( 0.00%) 97.44
halflif 108 ( 0.00%) 15292 ( 0.00%) 141.59
starcra 240 ( 0.00%) 24384 ( 0.00%) 101.60
everque 478 ( 0.00%) 88697 ( 0.00%) 185.56
unreal 152 ( 0.00%) 24462 ( 0.00%) 160.93
quake 16 ( 0.00%) 1876 ( 0.00%) 117.25
cuseeme 7 ( 0.00%) 599 ( 0.00%) 85.57
other 7742561 ( 31.91%) 4722350541 ( 29.85%) 609.92
icmp 684838 ( 2.82%) 130771193 ( 0.83%) 190.95
ipip 372 ( 0.00%) 46406 ( 0.00%) 124.75
ipsec 1298 ( 0.01%) 344072 ( 0.00%) 265.08
ip6 3946141 ( 16.26%) 2543610332 ( 16.08%) 644.58
other 13001 ( 0.05%) 5044688 ( 0.03%) 388.02
frag 2362 ( 0.01%) 2229750 ( 0.01%) 944.01
ip6 55004 ( 0.23%) 8134486 ( 0.05%) 147.89
tcp6 20803 ( 0.09%) 2295069 ( 0.01%) 110.32
http(s) 53 ( 0.00%) 23965 ( 0.00%) 452.17
http(c) 5011 ( 0.02%) 496179 ( 0.00%) 99.02
smtp 363 ( 0.00%) 222340 ( 0.00%) 612.51
ftp 5384 ( 0.02%) 539348 ( 0.00%) 100.18
imap 423 ( 0.00%) 44648 ( 0.00%) 105.55
ssh 3239 ( 0.01%) 268930 ( 0.00%) 83.03
dns 90 ( 0.00%) 21969 ( 0.00%) 244.10
bgp 111 ( 0.00%) 14651 ( 0.00%) 131.99
other 6129 ( 0.03%) 663039 ( 0.00%) 108.18
udp6 26313 ( 0.11%) 4816688 ( 0.03%) 183.05
dns 25817 ( 0.11%) 4760701 ( 0.03%) 184.40
other 496 ( 0.00%) 55987 ( 0.00%) 112.88
icmp6 7791 ( 0.03%) 948872 ( 0.01%) 121.79
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 66 ( 0.00%) 69641 ( 0.00%) 1055.17
tcpdump file: 201004150745.dump.gz (591.48 MB)