Traffic Trace Info
DumpFile: 201004151330.dump
FileSize: 2455.90MB
Id: 201004151330
StartTime: Thu Apr 15 13:30:01 2010
EndTime: Thu Apr 15 13:45:01 2010
TotalTime: 900.41 seconds
TotalCapSize: 1923.27MB CapLen: 96 bytes
# of packets: 34905573 (22025.15MB)
AvgRate: 205.17Mbps stddev:17.52M
IP flow (unique src/dst pair) Information
# of flows: 1095377 (avg. 31.87 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.1% 1.7% 1.3% 1.3% 1.0% 0.9% 0.8% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 596279
Top 10 bandwidth usage (bytes/total in %):
17.3% 7.3% 4.4% 3.8% 3.6% 3.2% 3.1% 3.1% 2.5% 2.5%
# of IPv6 addresses: 1022
Top 10 bandwidth usage (bytes/total in %):
25.1% 9.9% 9.2% 7.0% 6.0% 4.8% 4.7% 4.6% 4.0% 3.6%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004151330.pktlen.png)
detailed numbers
[ 32- 63]: 6115167
[ 64- 127]: 9189926
[ 128- 255]: 2363532
[ 256- 511]: 2119075
[ 512- 1023]: 1113571
[ 1024- 2047]: 14004302
Protocol Breakdown
![[protocol breakdown chart]](201004151330.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 34905573 (100.00%) 23095038563 (100.00%) 661.64
ip 34845838 ( 99.83%) 23085050037 ( 99.96%) 662.49
tcp 22157980 ( 63.48%) 16280395911 ( 70.49%) 734.74
http(s) 8925847 ( 25.57%) 11767722277 ( 50.95%) 1318.39
http(c) 7287424 ( 20.88%) 1431841178 ( 6.20%) 196.48
squid 354120 ( 1.01%) 79645082 ( 0.34%) 224.91
smtp 303146 ( 0.87%) 107928505 ( 0.47%) 356.03
ftp 24175 ( 0.07%) 5221767 ( 0.02%) 216.00
pop3 21403 ( 0.06%) 12345613 ( 0.05%) 576.82
imap 5139 ( 0.01%) 2645278 ( 0.01%) 514.75
telnet 2532 ( 0.01%) 1886547 ( 0.01%) 745.08
ssh 691172 ( 1.98%) 103471489 ( 0.45%) 149.70
dns 53325 ( 0.15%) 3677751 ( 0.02%) 68.97
bgp 140 ( 0.00%) 50536 ( 0.00%) 360.97
napster 270 ( 0.00%) 109046 ( 0.00%) 403.87
realaud 13 ( 0.00%) 1244 ( 0.00%) 95.69
rtsp 93735 ( 0.27%) 6090367 ( 0.03%) 64.97
icecast 66831 ( 0.19%) 18989887 ( 0.08%) 284.15
hotline 8 ( 0.00%) 881 ( 0.00%) 110.12
other 4328699 ( 12.40%) 2738767721 ( 11.86%) 632.70
udp 8926825 ( 25.57%) 4995450209 ( 21.63%) 559.60
dns 712544 ( 2.04%) 120145613 ( 0.52%) 168.62
realaud 29 ( 0.00%) 3646 ( 0.00%) 125.72
halflif 217 ( 0.00%) 38442 ( 0.00%) 177.15
starcra 157 ( 0.00%) 16441 ( 0.00%) 104.72
everque 660 ( 0.00%) 114946 ( 0.00%) 174.16
unreal 129 ( 0.00%) 22981 ( 0.00%) 178.15
quake 17 ( 0.00%) 1839 ( 0.00%) 108.18
cuseeme 9 ( 0.00%) 1084 ( 0.00%) 120.44
other 8212999 ( 23.53%) 4875052598 ( 21.11%) 593.58
icmp 661926 ( 1.90%) 96430919 ( 0.42%) 145.68
ipip 336 ( 0.00%) 42048 ( 0.00%) 125.14
ipsec 1802 ( 0.01%) 441068 ( 0.00%) 244.77
ip6 3064644 ( 8.78%) 1706591185 ( 7.39%) 556.86
other 32325 ( 0.09%) 5698697 ( 0.02%) 176.29
frag 592 ( 0.00%) 626026 ( 0.00%) 1057.48
ip6 59735 ( 0.17%) 9988526 ( 0.04%) 167.21
tcp6 20051 ( 0.06%) 2090220 ( 0.01%) 104.25
http(s) 85 ( 0.00%) 69083 ( 0.00%) 812.74
http(c) 3852 ( 0.01%) 355140 ( 0.00%) 92.20
smtp 213 ( 0.00%) 56588 ( 0.00%) 265.67
ftp 5352 ( 0.02%) 533881 ( 0.00%) 99.75
imap 337 ( 0.00%) 39423 ( 0.00%) 116.98
ssh 3894 ( 0.01%) 395300 ( 0.00%) 101.52
dns 183 ( 0.00%) 57766 ( 0.00%) 315.66
bgp 111 ( 0.00%) 14355 ( 0.00%) 129.32
other 6024 ( 0.02%) 568684 ( 0.00%) 94.40
udp6 32796 ( 0.09%) 6977444 ( 0.03%) 212.75
dns 32578 ( 0.09%) 6944019 ( 0.03%) 213.15
halflif 1 ( 0.00%) 113 ( 0.00%) 113.00
other 217 ( 0.00%) 33312 ( 0.00%) 153.51
icmp6 6767 ( 0.02%) 836205 ( 0.00%) 123.57
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 91 ( 0.00%) 80577 ( 0.00%) 885.46
tcpdump file: 201004151330.dump.gz (893.00 MB)