Traffic Trace Info
DumpFile: 201004150830.dump
FileSize: 1677.32MB
Id: 201004150830
StartTime: Thu Apr 15 08:30:00 2010
EndTime: Thu Apr 15 08:45:00 2010
TotalTime: 899.97 seconds
TotalCapSize: 1314.12MB CapLen: 96 bytes
# of packets: 23802457 (14698.37MB)
AvgRate: 136.99Mbps stddev:11.36M
IP flow (unique src/dst pair) Information
# of flows: 772117 (avg. 30.83 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.7% 2.2% 1.8% 1.5% 1.3% 0.9% 0.9% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 423845
Top 10 bandwidth usage (bytes/total in %):
24.0% 12.5% 4.9% 4.8% 4.5% 4.2% 4.0% 3.8% 3.3% 2.2%
# of IPv6 addresses: 920
Top 10 bandwidth usage (bytes/total in %):
26.8% 10.3% 10.2% 10.1% 8.1% 6.5% 5.5% 5.2% 5.0% 4.7%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004150830.pktlen.png)
detailed numbers
[ 32- 63]: 3242537
[ 64- 127]: 6736022
[ 128- 255]: 2230370
[ 256- 511]: 1579064
[ 512- 1023]: 672026
[ 1024- 2047]: 9342438
Protocol Breakdown
![[protocol breakdown chart]](201004150830.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 23802457 (100.00%) 15412360956 (100.00%) 647.51
ip 23745894 ( 99.76%) 15403237002 ( 99.94%) 648.67
tcp 12334236 ( 51.82%) 8822049591 ( 57.24%) 715.25
http(s) 5174566 ( 21.74%) 7025667493 ( 45.58%) 1357.73
http(c) 3677553 ( 15.45%) 379112356 ( 2.46%) 103.09
squid 236235 ( 0.99%) 96151855 ( 0.62%) 407.02
smtp 361105 ( 1.52%) 150996169 ( 0.98%) 418.15
nntp 1 ( 0.00%) 60 ( 0.00%) 60.00
ftp 8416 ( 0.04%) 1154964 ( 0.01%) 137.23
pop3 16815 ( 0.07%) 13605300 ( 0.09%) 809.12
imap 1685 ( 0.01%) 435002 ( 0.00%) 258.16
telnet 814 ( 0.00%) 88041 ( 0.00%) 108.16
ssh 595635 ( 2.50%) 88232230 ( 0.57%) 148.13
dns 52090 ( 0.22%) 3595497 ( 0.02%) 69.02
bgp 194 ( 0.00%) 80724 ( 0.00%) 416.10
napster 728 ( 0.00%) 73428 ( 0.00%) 100.86
rtsp 235 ( 0.00%) 51118 ( 0.00%) 217.52
icecast 9087 ( 0.04%) 602115 ( 0.00%) 66.26
other 2199060 ( 9.24%) 1062202219 ( 6.89%) 483.03
udp 7696764 ( 32.34%) 4508674218 ( 29.25%) 585.79
dns 658159 ( 2.77%) 133760095 ( 0.87%) 203.23
realaud 36 ( 0.00%) 3773 ( 0.00%) 104.81
halflif 188 ( 0.00%) 27766 ( 0.00%) 147.69
starcra 215 ( 0.00%) 24333 ( 0.00%) 113.18
everque 521 ( 0.00%) 104903 ( 0.00%) 201.35
unreal 189 ( 0.00%) 33824 ( 0.00%) 178.96
quake 25 ( 0.00%) 2012 ( 0.00%) 80.48
cuseeme 1 ( 0.00%) 90 ( 0.00%) 90.00
other 7037137 ( 29.56%) 4374544324 ( 28.38%) 621.64
icmp 599563 ( 2.52%) 126941382 ( 0.82%) 211.72
ipip 322 ( 0.00%) 40040 ( 0.00%) 124.35
ipsec 1685 ( 0.01%) 481354 ( 0.00%) 285.67
ip6 3103780 ( 13.04%) 1942138816 ( 12.60%) 625.73
other 9544 ( 0.04%) 2911601 ( 0.02%) 305.07
frag 15618 ( 0.07%) 17582898 ( 0.11%) 1125.81
ip6 56563 ( 0.24%) 9123954 ( 0.06%) 161.31
tcp6 20592 ( 0.09%) 2911646 ( 0.02%) 141.40
http(s) 35 ( 0.00%) 20156 ( 0.00%) 575.89
http(c) 3918 ( 0.02%) 357336 ( 0.00%) 91.20
smtp 316 ( 0.00%) 96700 ( 0.00%) 306.01
ftp 5342 ( 0.02%) 534660 ( 0.00%) 100.09
imap 859 ( 0.00%) 90498 ( 0.00%) 105.35
ssh 3232 ( 0.01%) 267948 ( 0.00%) 82.90
dns 130 ( 0.00%) 34764 ( 0.00%) 267.42
bgp 114 ( 0.00%) 18663 ( 0.00%) 163.71
other 6646 ( 0.03%) 1490921 ( 0.01%) 224.33
udp6 28308 ( 0.12%) 5258142 ( 0.03%) 185.75
dns 28126 ( 0.12%) 5230462 ( 0.03%) 185.97
other 182 ( 0.00%) 27680 ( 0.00%) 152.09
icmp6 7607 ( 0.03%) 928228 ( 0.01%) 122.02
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 26 ( 0.00%) 21858 ( 0.00%) 840.69
tcpdump file: 201004150830.dump.gz (586.05 MB)