Traffic Trace Info
DumpFile: 201004151315.dump
FileSize: 2308.78MB
Id: 201004151315
StartTime: Thu Apr 15 13:15:01 2010
EndTime: Thu Apr 15 13:30:01 2010
TotalTime: 900.22 seconds
TotalCapSize: 1806.72MB CapLen: 96 bytes
# of packets: 32902091 (20049.88MB)
AvgRate: 186.85Mbps stddev:17.50M
IP flow (unique src/dst pair) Information
# of flows: 1162236 (avg. 28.31 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.5% 1.8% 1.4% 1.2% 1.1% 1.1% 0.8% 0.8% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 685230
Top 10 bandwidth usage (bytes/total in %):
18.8% 7.9% 5.7% 4.6% 3.6% 2.8% 2.6% 2.6% 2.5% 2.3%
# of IPv6 addresses: 1042
Top 10 bandwidth usage (bytes/total in %):
25.1% 10.4% 9.2% 6.0% 5.6% 5.5% 4.7% 4.6% 3.3% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004151315.pktlen.png)
detailed numbers
[ 32- 63]: 5783798
[ 64- 127]: 8729175
[ 128- 255]: 2584141
[ 256- 511]: 2103623
[ 512- 1023]: 1110936
[ 1024- 2047]: 12590418
Protocol Breakdown
![[protocol breakdown chart]](201004151315.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 32902091 (100.00%) 21023822324 (100.00%) 638.98
ip 32843197 ( 99.82%) 21013837481 ( 99.95%) 639.82
tcp 20095306 ( 61.08%) 14356696050 ( 68.29%) 714.43
http(s) 7662619 ( 23.29%) 9943017452 ( 47.29%) 1297.60
http(c) 6170827 ( 18.76%) 1038717624 ( 4.94%) 168.33
squid 278196 ( 0.85%) 82237940 ( 0.39%) 295.61
smtp 334203 ( 1.02%) 103809022 ( 0.49%) 310.62
ftp 21630 ( 0.07%) 5879949 ( 0.03%) 271.84
pop3 24557 ( 0.07%) 14739289 ( 0.07%) 600.21
imap 6270 ( 0.02%) 3890605 ( 0.02%) 620.51
telnet 9004 ( 0.03%) 6506208 ( 0.03%) 722.59
ssh 690714 ( 2.10%) 103078239 ( 0.49%) 149.23
dns 52897 ( 0.16%) 3667210 ( 0.02%) 69.33
bgp 153 ( 0.00%) 55525 ( 0.00%) 362.91
napster 1757 ( 0.01%) 1405227 ( 0.01%) 799.79
realaud 17 ( 0.00%) 1494 ( 0.00%) 87.88
rtsp 132197 ( 0.40%) 8260016 ( 0.04%) 62.48
icecast 63988 ( 0.19%) 18756508 ( 0.09%) 293.13
hotline 24 ( 0.00%) 2446 ( 0.00%) 101.92
other 4646250 ( 14.12%) 3022671116 ( 14.38%) 650.56
udp 9095321 ( 27.64%) 4899087098 ( 23.30%) 538.64
dns 704798 ( 2.14%) 119716638 ( 0.57%) 169.86
realaud 219 ( 0.00%) 14807 ( 0.00%) 67.61
halflif 218 ( 0.00%) 36783 ( 0.00%) 168.73
starcra 198 ( 0.00%) 21486 ( 0.00%) 108.52
everque 3946 ( 0.01%) 3565248 ( 0.02%) 903.51
unreal 199 ( 0.00%) 37705 ( 0.00%) 189.47
quake 49 ( 0.00%) 5276 ( 0.00%) 107.67
cuseeme 2 ( 0.00%) 213 ( 0.00%) 106.50
other 8385574 ( 25.49%) 4775579868 ( 22.72%) 569.50
icmp 592103 ( 1.80%) 82232554 ( 0.39%) 138.88
ipip 345 ( 0.00%) 44186 ( 0.00%) 128.08
ipsec 1693 ( 0.01%) 419494 ( 0.00%) 247.78
ip6 3025349 ( 9.20%) 1670872645 ( 7.95%) 552.29
other 33080 ( 0.10%) 4485454 ( 0.02%) 135.59
frag 756 ( 0.00%) 827094 ( 0.00%) 1094.04
ip6 58894 ( 0.18%) 9984843 ( 0.05%) 169.54
tcp6 19640 ( 0.06%) 2279911 ( 0.01%) 116.09
http(s) 373 ( 0.00%) 334318 ( 0.00%) 896.29
http(c) 3941 ( 0.01%) 363626 ( 0.00%) 92.27
smtp 180 ( 0.00%) 60510 ( 0.00%) 336.17
ftp 5393 ( 0.02%) 535602 ( 0.00%) 99.31
imap 276 ( 0.00%) 31462 ( 0.00%) 113.99
ssh 3409 ( 0.01%) 353158 ( 0.00%) 103.60
dns 146 ( 0.00%) 37472 ( 0.00%) 256.66
bgp 113 ( 0.00%) 14829 ( 0.00%) 131.23
other 5809 ( 0.02%) 548934 ( 0.00%) 94.50
udp6 32117 ( 0.10%) 6795789 ( 0.03%) 211.59
dns 31866 ( 0.10%) 6755547 ( 0.03%) 212.00
other 251 ( 0.00%) 40242 ( 0.00%) 160.33
icmp6 7063 ( 0.02%) 867895 ( 0.00%) 122.88
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 44 ( 0.00%) 37168 ( 0.00%) 844.73
tcpdump file: 201004151315.dump.gz (844.02 MB)