Traffic Trace Info
DumpFile: 201004151430.dump
FileSize: 2470.49MB
Id: 201004151430
StartTime: Thu Apr 15 14:30:01 2010
EndTime: Thu Apr 15 14:45:01 2010
TotalTime: 900.11 seconds
TotalCapSize: 1936.47MB CapLen: 96 bytes
# of packets: 34996414 (22278.02MB)
AvgRate: 207.62Mbps stddev:15.97M
IP flow (unique src/dst pair) Information
# of flows: 917629 (avg. 38.14 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.2% 2.4% 1.8% 1.7% 1.4% 1.3% 1.2% 0.9% 0.9% 0.9%
IP address Information
# of IPv4 addresses: 488405
Top 10 bandwidth usage (bytes/total in %):
13.3% 6.9% 5.8% 3.3% 3.3% 3.0% 3.0% 2.7% 2.6% 2.5%
# of IPv6 addresses: 1091
Top 10 bandwidth usage (bytes/total in %):
22.3% 9.9% 8.7% 5.3% 5.2% 4.9% 4.6% 4.5% 4.4% 4.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004151430.pktlen.png)
detailed numbers
[ 32- 63]: 5800354
[ 64- 127]: 9730931
[ 128- 255]: 2156465
[ 256- 511]: 2014036
[ 512- 1023]: 1033788
[ 1024- 2047]: 14260840
Protocol Breakdown
![[protocol breakdown chart]](201004151430.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 34996414 (100.00%) 23360193929 (100.00%) 667.50
ip 34933589 ( 99.82%) 23348993670 ( 99.95%) 668.38
tcp 22912164 ( 65.47%) 17079682394 ( 73.11%) 745.44
http(s) 10113597 ( 28.90%) 13356982136 ( 57.18%) 1320.70
http(c) 7143377 ( 20.41%) 964312569 ( 4.13%) 134.99
squid 333171 ( 0.95%) 126919978 ( 0.54%) 380.95
smtp 334713 ( 0.96%) 100551504 ( 0.43%) 300.41
ftp 465815 ( 1.33%) 436523535 ( 1.87%) 937.12
pop3 28188 ( 0.08%) 17645656 ( 0.08%) 626.00
imap 3848 ( 0.01%) 920936 ( 0.00%) 239.33
telnet 696 ( 0.00%) 86532 ( 0.00%) 124.33
ssh 684569 ( 1.96%) 101625478 ( 0.44%) 148.45
dns 56624 ( 0.16%) 3887970 ( 0.02%) 68.66
bgp 140 ( 0.00%) 47904 ( 0.00%) 342.17
napster 19 ( 0.00%) 2173 ( 0.00%) 114.37
realaud 85 ( 0.00%) 8105 ( 0.00%) 95.35
rtsp 127468 ( 0.36%) 8091437 ( 0.03%) 63.48
icecast 47704 ( 0.14%) 3148365 ( 0.01%) 66.00
hotline 12 ( 0.00%) 983 ( 0.00%) 81.92
other 3572131 ( 10.21%) 1958926713 ( 8.39%) 548.39
udp 8350620 ( 23.86%) 4424810610 ( 18.94%) 529.88
dns 754964 ( 2.16%) 128171378 ( 0.55%) 169.77
realaud 25 ( 0.00%) 2430 ( 0.00%) 97.20
halflif 240 ( 0.00%) 36369 ( 0.00%) 151.54
starcra 205 ( 0.00%) 21934 ( 0.00%) 107.00
everque 666 ( 0.00%) 118742 ( 0.00%) 178.29
unreal 65 ( 0.00%) 11572 ( 0.00%) 178.03
quake 38 ( 0.00%) 10348 ( 0.00%) 272.32
cuseeme 3 ( 0.00%) 259 ( 0.00%) 86.33
other 7594233 ( 21.70%) 4296357119 ( 18.39%) 565.74
icmp 530373 ( 1.52%) 70199503 ( 0.30%) 132.36
ipip 364 ( 0.00%) 46022 ( 0.00%) 126.43
ipsec 1765 ( 0.01%) 443358 ( 0.00%) 251.19
ip6 2969972 ( 8.49%) 1618180975 ( 6.93%) 544.85
other 168331 ( 0.48%) 155630808 ( 0.67%) 924.55
frag 841 ( 0.00%) 842021 ( 0.00%) 1001.21
ip6 62825 ( 0.18%) 11200259 ( 0.05%) 178.28
tcp6 21827 ( 0.06%) 3412610 ( 0.01%) 156.35
http(s) 1328 ( 0.00%) 1319884 ( 0.01%) 993.89
http(c) 4001 ( 0.01%) 361324 ( 0.00%) 90.31
smtp 407 ( 0.00%) 178062 ( 0.00%) 437.50
ftp 4619 ( 0.01%) 462537 ( 0.00%) 100.14
imap 655 ( 0.00%) 70902 ( 0.00%) 108.25
ssh 3307 ( 0.01%) 291006 ( 0.00%) 88.00
dns 86 ( 0.00%) 35800 ( 0.00%) 416.28
bgp 115 ( 0.00%) 16999 ( 0.00%) 147.82
other 7309 ( 0.02%) 676096 ( 0.00%) 92.50
udp6 34152 ( 0.10%) 6894351 ( 0.03%) 201.87
dns 33928 ( 0.10%) 6859732 ( 0.03%) 202.18
realaud 1 ( 0.00%) 168 ( 0.00%) 168.00
other 223 ( 0.00%) 34451 ( 0.00%) 154.49
icmp6 6726 ( 0.02%) 809380 ( 0.00%) 120.34
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 90 ( 0.00%) 79838 ( 0.00%) 887.09
tcpdump file: 201004151430.dump.gz (889.99 MB)