Traffic Trace Info
DumpFile: 201004150815.dump
FileSize: 1690.60MB
Id: 201004150815
StartTime: Thu Apr 15 08:15:00 2010
EndTime: Thu Apr 15 08:30:00 2010
TotalTime: 900.10 seconds
TotalCapSize: 1321.72MB CapLen: 96 bytes
# of packets: 24174562 (14918.88MB)
AvgRate: 139.03Mbps stddev:14.86M
IP flow (unique src/dst pair) Information
# of flows: 866917 (avg. 27.89 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.0% 3.3% 2.4% 2.0% 2.0% 1.4% 1.2% 0.9% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 504167
Top 10 bandwidth usage (bytes/total in %):
24.4% 11.9% 5.2% 5.1% 4.5% 3.9% 3.6% 3.5% 3.5% 3.1%
# of IPv6 addresses: 914
Top 10 bandwidth usage (bytes/total in %):
27.4% 11.3% 10.4% 7.3% 6.5% 6.1% 5.8% 5.6% 5.5% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004150815.pktlen.png)
detailed numbers
[ 32- 63]: 3080005
[ 64- 127]: 7063635
[ 128- 255]: 2193893
[ 256- 511]: 1613311
[ 512- 1023]: 618010
[ 1024- 2047]: 9605708
Protocol Breakdown
![[protocol breakdown chart]](201004150815.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 24174562 (100.00%) 15643583748 (100.00%) 647.11
ip 24120507 ( 99.78%) 15635443387 ( 99.95%) 648.22
tcp 11910351 ( 49.27%) 8627868788 ( 55.15%) 724.40
http(s) 5257755 ( 21.75%) 7007225367 ( 44.79%) 1332.74
http(c) 3228057 ( 13.35%) 343296408 ( 2.19%) 106.35
squid 278106 ( 1.15%) 120429035 ( 0.77%) 433.03
smtp 339359 ( 1.40%) 81005500 ( 0.52%) 238.70
ftp 9350 ( 0.04%) 945103 ( 0.01%) 101.08
pop3 10324 ( 0.04%) 6032730 ( 0.04%) 584.34
imap 1416 ( 0.01%) 437810 ( 0.00%) 309.19
telnet 470 ( 0.00%) 49259 ( 0.00%) 104.81
ssh 601630 ( 2.49%) 93016963 ( 0.59%) 154.61
dns 55016 ( 0.23%) 3816608 ( 0.02%) 69.37
bgp 180 ( 0.00%) 71665 ( 0.00%) 398.14
napster 25 ( 0.00%) 3441 ( 0.00%) 137.64
realaud 17 ( 0.00%) 1605 ( 0.00%) 94.41
rtsp 252 ( 0.00%) 55175 ( 0.00%) 218.95
icecast 8557 ( 0.04%) 572062 ( 0.00%) 66.85
other 2119834 ( 8.77%) 970909877 ( 6.21%) 458.01
udp 8612232 ( 35.63%) 4994473261 ( 31.93%) 579.93
dns 627383 ( 2.60%) 114304550 ( 0.73%) 182.19
realaud 33 ( 0.00%) 3603 ( 0.00%) 109.18
halflif 192 ( 0.00%) 28190 ( 0.00%) 146.82
starcra 207 ( 0.00%) 25893 ( 0.00%) 125.09
everque 513 ( 0.00%) 98678 ( 0.00%) 192.35
unreal 265 ( 0.00%) 42773 ( 0.00%) 161.41
quake 33 ( 0.00%) 2895 ( 0.00%) 87.73
cuseeme 8 ( 0.00%) 693 ( 0.00%) 86.62
other 7983159 ( 33.02%) 4879636957 ( 31.19%) 611.24
icmp 536657 ( 2.22%) 112774435 ( 0.72%) 210.14
ipip 341 ( 0.00%) 43258 ( 0.00%) 126.86
ipsec 22592 ( 0.09%) 13637056 ( 0.09%) 603.62
ip6 3026842 ( 12.52%) 1882365243 ( 12.03%) 621.89
other 11492 ( 0.05%) 4281346 ( 0.03%) 372.55
frag 3194 ( 0.01%) 3923626 ( 0.03%) 1228.44
ip6 54055 ( 0.22%) 8140361 ( 0.05%) 150.59
tcp6 19468 ( 0.08%) 2124874 ( 0.01%) 109.15
http(s) 26 ( 0.00%) 15210 ( 0.00%) 585.00
http(c) 3993 ( 0.02%) 363143 ( 0.00%) 90.94
smtp 623 ( 0.00%) 326120 ( 0.00%) 523.47
ftp 5302 ( 0.02%) 532420 ( 0.00%) 100.42
imap 563 ( 0.00%) 57627 ( 0.00%) 102.36
ssh 3241 ( 0.01%) 269082 ( 0.00%) 83.02
dns 66 ( 0.00%) 18565 ( 0.00%) 281.29
bgp 112 ( 0.00%) 16147 ( 0.00%) 144.17
other 5542 ( 0.02%) 526560 ( 0.00%) 95.01
udp6 25160 ( 0.10%) 4807467 ( 0.03%) 191.08
dns 24977 ( 0.10%) 4778474 ( 0.03%) 191.31
other 183 ( 0.00%) 28993 ( 0.00%) 158.43
icmp6 9330 ( 0.04%) 1145708 ( 0.01%) 122.80
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 67 ( 0.00%) 58232 ( 0.00%) 869.13
tcpdump file: 201004150815.dump.gz (586.21 MB)