Traffic Trace Info
DumpFile: 201004152030.dump
FileSize: 2485.59MB
Id: 201004152030
StartTime: Thu Apr 15 20:30:01 2010
EndTime: Thu Apr 15 20:45:01 2010
TotalTime: 899.77 seconds
TotalCapSize: 1943.94MB CapLen: 96 bytes
# of packets: 35497056 (23376.75MB)
AvgRate: 217.97Mbps stddev:22.46M
IP flow (unique src/dst pair) Information
# of flows: 1514420 (avg. 23.44 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.5% 2.6% 1.3% 1.3% 1.3% 1.2% 1.1% 0.8% 0.8% 0.8%
IP address Information
# of IPv4 addresses: 870120
Top 10 bandwidth usage (bytes/total in %):
10.6% 5.2% 5.2% 5.2% 4.6% 4.6% 4.2% 4.1% 3.8% 2.7%
# of IPv6 addresses: 1061
Top 10 bandwidth usage (bytes/total in %):
27.1% 10.6% 6.5% 6.3% 6.2% 5.5% 4.6% 4.6% 3.6% 3.4%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004152030.pktlen.png)
detailed numbers
[ 32- 63]: 6154181
[ 64- 127]: 9195372
[ 128- 255]: 2332715
[ 256- 511]: 1863043
[ 512- 1023]: 1002771
[ 1024- 2047]: 14948974
Protocol Breakdown
![[protocol breakdown chart]](201004152030.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 35497056 (100.00%) 24512296419 (100.00%) 690.54
ip 35437086 ( 99.83%) 24503165706 ( 99.96%) 691.46
tcp 23716110 ( 66.81%) 19154493190 ( 78.14%) 807.66
http(s) 10022144 ( 28.23%) 13618365410 ( 55.56%) 1358.83
http(c) 5568063 ( 15.69%) 687854192 ( 2.81%) 123.54
squid 363098 ( 1.02%) 139096525 ( 0.57%) 383.08
smtp 471951 ( 1.33%) 84054923 ( 0.34%) 178.10
ftp 1161783 ( 3.27%) 1124971033 ( 4.59%) 968.31
pop3 14786 ( 0.04%) 11745634 ( 0.05%) 794.38
imap 4514 ( 0.01%) 2826957 ( 0.01%) 626.26
telnet 377 ( 0.00%) 60243 ( 0.00%) 159.80
ssh 1187536 ( 3.35%) 173985010 ( 0.71%) 146.51
dns 55236 ( 0.16%) 3783050 ( 0.02%) 68.49
bgp 158 ( 0.00%) 57228 ( 0.00%) 362.20
napster 29 ( 0.00%) 3190 ( 0.00%) 110.00
realaud 17 ( 0.00%) 1099 ( 0.00%) 64.65
rtsp 113451 ( 0.32%) 20124160 ( 0.08%) 177.38
icecast 696 ( 0.00%) 77510 ( 0.00%) 111.36
other 4752269 ( 13.39%) 3287486906 ( 13.41%) 691.77
udp 8142859 ( 22.94%) 3851948321 ( 15.71%) 473.05
dns 826815 ( 2.33%) 140866810 ( 0.57%) 170.37
realaud 1532 ( 0.00%) 100582 ( 0.00%) 65.65
halflif 78 ( 0.00%) 6914 ( 0.00%) 88.64
starcra 221 ( 0.00%) 23011 ( 0.00%) 104.12
everque 544 ( 0.00%) 96022 ( 0.00%) 176.51
unreal 92 ( 0.00%) 10610 ( 0.00%) 115.33
quake 151 ( 0.00%) 19552 ( 0.00%) 129.48
cuseeme 85 ( 0.00%) 14604 ( 0.00%) 171.81
other 7313006 ( 20.60%) 3710614219 ( 15.14%) 507.40
icmp 1108666 ( 3.12%) 197364625 ( 0.81%) 178.02
ipip 338 ( 0.00%) 43748 ( 0.00%) 129.43
ipsec 1478 ( 0.00%) 365908 ( 0.00%) 247.57
ip6 2443522 ( 6.88%) 1285017604 ( 5.24%) 525.89
other 24113 ( 0.07%) 13932310 ( 0.06%) 577.79
frag 1523 ( 0.00%) 1552157 ( 0.01%) 1019.14
ip6 59970 ( 0.17%) 9130713 ( 0.04%) 152.25
tcp6 20334 ( 0.06%) 2073670 ( 0.01%) 101.98
http(s) 33 ( 0.00%) 17745 ( 0.00%) 537.73
http(c) 4521 ( 0.01%) 437562 ( 0.00%) 96.78
smtp 211 ( 0.00%) 113523 ( 0.00%) 538.02
ftp 4396 ( 0.01%) 462128 ( 0.00%) 105.12
imap 365 ( 0.00%) 43428 ( 0.00%) 118.98
ssh 3493 ( 0.01%) 296382 ( 0.00%) 84.85
dns 122 ( 0.00%) 34219 ( 0.00%) 280.48
bgp 110 ( 0.00%) 15696 ( 0.00%) 142.69
other 7083 ( 0.02%) 652987 ( 0.00%) 92.19
udp6 32757 ( 0.09%) 6163922 ( 0.03%) 188.17
dns 32564 ( 0.09%) 6133359 ( 0.03%) 188.35
everque 1 ( 0.00%) 106 ( 0.00%) 106.00
quake 1 ( 0.00%) 104 ( 0.00%) 104.00
other 191 ( 0.00%) 30353 ( 0.00%) 158.92
icmp6 6795 ( 0.02%) 838161 ( 0.00%) 123.35
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 54 ( 0.00%) 50880 ( 0.00%) 942.22
tcpdump file: 201004152030.dump.gz (907.89 MB)