Traffic Trace Info
DumpFile: 201004150845.dump
FileSize: 1598.69MB
Id: 201004150845
StartTime: Thu Apr 15 08:45:00 2010
EndTime: Thu Apr 15 09:00:00 2010
TotalTime: 899.68 seconds
TotalCapSize: 1251.55MB CapLen: 96 bytes
# of packets: 22749659 (13893.37MB)
AvgRate: 129.55Mbps stddev:13.73M
IP flow (unique src/dst pair) Information
# of flows: 812132 (avg. 28.01 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.2% 1.9% 1.6% 1.5% 1.2% 1.2% 1.1% 1.0% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 470772
Top 10 bandwidth usage (bytes/total in %):
24.2% 12.1% 4.2% 3.9% 3.7% 3.5% 2.6% 2.3% 2.2% 2.1%
# of IPv6 addresses: 960
Top 10 bandwidth usage (bytes/total in %):
27.4% 14.4% 10.4% 8.3% 6.7% 5.3% 5.3% 5.2% 4.7% 2.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004150845.pktlen.png)
detailed numbers
[ 32- 63]: 3209891
[ 64- 127]: 6363816
[ 128- 255]: 2258259
[ 256- 511]: 1443183
[ 512- 1023]: 683304
[ 1024- 2047]: 8791206
Protocol Breakdown
![[protocol breakdown chart]](201004150845.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 22749659 (100.00%) 14568258635 (100.00%) 640.37
ip 22693676 ( 99.75%) 14559420467 ( 99.94%) 641.56
tcp 11842876 ( 52.06%) 8563690900 ( 58.78%) 723.11
http(s) 5203195 ( 22.87%) 6939780664 ( 47.64%) 1333.75
http(c) 3393743 ( 14.92%) 380463837 ( 2.61%) 112.11
squid 221858 ( 0.98%) 90249129 ( 0.62%) 406.79
smtp 293667 ( 1.29%) 65607971 ( 0.45%) 223.41
nntp 3 ( 0.00%) 186 ( 0.00%) 62.00
ftp 9134 ( 0.04%) 1042897 ( 0.01%) 114.18
pop3 11902 ( 0.05%) 8157253 ( 0.06%) 685.37
imap 2249 ( 0.01%) 384927 ( 0.00%) 171.15
telnet 567 ( 0.00%) 55695 ( 0.00%) 98.23
ssh 609501 ( 2.68%) 97467900 ( 0.67%) 159.91
dns 55301 ( 0.24%) 3793890 ( 0.03%) 68.60
bgp 139 ( 0.00%) 42222 ( 0.00%) 303.76
napster 5 ( 0.00%) 338 ( 0.00%) 67.60
rtsp 321 ( 0.00%) 85986 ( 0.00%) 267.87
icecast 14044 ( 0.06%) 897125 ( 0.01%) 63.88
other 2027245 ( 8.91%) 975660760 ( 6.70%) 481.27
udp 7341409 ( 32.27%) 4128715259 ( 28.34%) 562.39
dns 688877 ( 3.03%) 145413937 ( 1.00%) 211.09
realaud 13 ( 0.00%) 1810 ( 0.00%) 139.23
halflif 125 ( 0.00%) 19810 ( 0.00%) 158.48
starcra 188 ( 0.00%) 20080 ( 0.00%) 106.81
everque 501 ( 0.00%) 95370 ( 0.00%) 190.36
unreal 198 ( 0.00%) 35583 ( 0.00%) 179.71
quake 21 ( 0.00%) 1903 ( 0.00%) 90.62
cuseeme 4 ( 0.00%) 420 ( 0.00%) 105.00
other 6650585 ( 29.23%) 3982720595 ( 27.34%) 598.85
icmp 529523 ( 2.33%) 92241611 ( 0.63%) 174.20
ipip 366 ( 0.00%) 46828 ( 0.00%) 127.95
ipsec 4431 ( 0.02%) 2172394 ( 0.01%) 490.27
ip6 2969008 ( 13.05%) 1771692551 ( 12.16%) 596.73
other 6063 ( 0.03%) 860924 ( 0.01%) 142.00
frag 16642 ( 0.07%) 18163933 ( 0.12%) 1091.45
ip6 55983 ( 0.25%) 8838168 ( 0.06%) 157.87
tcp6 19120 ( 0.08%) 1919679 ( 0.01%) 100.40
http(s) 33 ( 0.00%) 17744 ( 0.00%) 537.70
http(c) 3720 ( 0.02%) 340289 ( 0.00%) 91.48
smtp 265 ( 0.00%) 109438 ( 0.00%) 412.97
ftp 5409 ( 0.02%) 537277 ( 0.00%) 99.33
imap 240 ( 0.00%) 27186 ( 0.00%) 113.28
ssh 3236 ( 0.01%) 268708 ( 0.00%) 83.04
dns 91 ( 0.00%) 23971 ( 0.00%) 263.42
bgp 111 ( 0.00%) 14516 ( 0.00%) 130.77
other 6015 ( 0.03%) 580550 ( 0.00%) 96.52
udp6 29443 ( 0.13%) 5787165 ( 0.04%) 196.55
dns 29197 ( 0.13%) 5745114 ( 0.04%) 196.77
other 246 ( 0.00%) 42051 ( 0.00%) 170.94
icmp6 7129 ( 0.03%) 859308 ( 0.01%) 120.54
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 261 ( 0.00%) 267936 ( 0.00%) 1026.57
tcpdump file: 201004150845.dump.gz (563.64 MB)