Traffic Trace Info
DumpFile: 201004152315.dump
FileSize: 2541.86MB
Id: 201004152315
StartTime: Thu Apr 15 23:15:01 2010
EndTime: Thu Apr 15 23:30:01 2010
TotalTime: 899.32 seconds
TotalCapSize: 1987.83MB CapLen: 96 bytes
# of packets: 36304534 (24315.14MB)
AvgRate: 226.80Mbps stddev:19.65M
IP flow (unique src/dst pair) Information
# of flows: 1074080 (avg. 33.80 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.6% 1.5% 1.4% 1.3% 1.2% 1.1% 0.7% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 569768
Top 10 bandwidth usage (bytes/total in %):
13.2% 6.3% 6.2% 5.8% 5.5% 4.9% 4.7% 3.7% 3.7% 3.2%
# of IPv6 addresses: 1056
Top 10 bandwidth usage (bytes/total in %):
27.8% 14.3% 7.9% 6.7% 6.2% 6.0% 4.1% 4.0% 3.2% 2.8%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004152315.pktlen.png)
detailed numbers
[ 32- 63]: 5688293
[ 64- 127]: 9706775
[ 128- 255]: 2634774
[ 256- 511]: 1802992
[ 512- 1023]: 824377
[ 1024- 2047]: 15647323
Protocol Breakdown
![[protocol breakdown chart]](201004152315.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 36304534 (100.00%) 25496273575 (100.00%) 702.29
ip 36250670 ( 99.85%) 25487354791 ( 99.97%) 703.09
tcp 23657843 ( 65.16%) 19712689439 ( 77.32%) 833.24
http(s) 10282644 ( 28.32%) 14291848944 ( 56.05%) 1389.90
http(c) 5767335 ( 15.89%) 599333173 ( 2.35%) 103.92
squid 289695 ( 0.80%) 102595418 ( 0.40%) 354.15
smtp 443738 ( 1.22%) 104970174 ( 0.41%) 236.56
nntp 6 ( 0.00%) 380 ( 0.00%) 63.33
ftp 976403 ( 2.69%) 943917729 ( 3.70%) 966.73
pop3 11301 ( 0.03%) 8591265 ( 0.03%) 760.22
imap 2427 ( 0.01%) 969772 ( 0.00%) 399.58
telnet 381 ( 0.00%) 42223 ( 0.00%) 110.82
ssh 1179101 ( 3.25%) 164999947 ( 0.65%) 139.94
dns 57940 ( 0.16%) 4380018 ( 0.02%) 75.60
bgp 157 ( 0.00%) 58572 ( 0.00%) 373.07
napster 30 ( 0.00%) 3009 ( 0.00%) 100.30
realaud 250 ( 0.00%) 56966 ( 0.00%) 227.86
rtsp 232488 ( 0.64%) 179951432 ( 0.71%) 774.02
icecast 1633 ( 0.00%) 135371 ( 0.00%) 82.90
hotline 5 ( 0.00%) 628 ( 0.00%) 125.60
other 4412307 ( 12.15%) 3310834298 ( 12.99%) 750.36
udp 8488691 ( 23.38%) 4065169773 ( 15.94%) 478.89
dns 804067 ( 2.21%) 141851851 ( 0.56%) 176.42
realaud 145 ( 0.00%) 18589 ( 0.00%) 128.20
halflif 221 ( 0.00%) 15900 ( 0.00%) 71.95
starcra 267 ( 0.00%) 27457 ( 0.00%) 102.84
everque 535 ( 0.00%) 85779 ( 0.00%) 160.33
unreal 122 ( 0.00%) 13118 ( 0.00%) 107.52
quake 35 ( 0.00%) 3348 ( 0.00%) 95.66
cuseeme 92 ( 0.00%) 16309 ( 0.00%) 177.27
other 7682969 ( 21.16%) 3923024262 ( 15.39%) 510.61
icmp 969972 ( 2.67%) 156392603 ( 0.61%) 161.23
ipip 357 ( 0.00%) 45410 ( 0.00%) 127.20
ipsec 1423 ( 0.00%) 347946 ( 0.00%) 244.52
ip6 2886884 ( 7.95%) 1494665065 ( 5.86%) 517.74
other 245500 ( 0.68%) 58044555 ( 0.23%) 236.43
frag 1806 ( 0.00%) 1795268 ( 0.01%) 994.06
ip6 53864 ( 0.15%) 8918784 ( 0.03%) 165.58
tcp6 10800 ( 0.03%) 1196874 ( 0.00%) 110.82
http(s) 52 ( 0.00%) 32117 ( 0.00%) 617.63
http(c) 4359 ( 0.01%) 414228 ( 0.00%) 95.03
smtp 207 ( 0.00%) 102184 ( 0.00%) 493.64
imap 350 ( 0.00%) 40146 ( 0.00%) 114.70
ssh 3266 ( 0.01%) 276648 ( 0.00%) 84.71
dns 95 ( 0.00%) 24899 ( 0.00%) 262.09
bgp 124 ( 0.00%) 24746 ( 0.00%) 199.56
other 2347 ( 0.01%) 281906 ( 0.00%) 120.11
udp6 35779 ( 0.10%) 6772173 ( 0.03%) 189.28
dns 35545 ( 0.10%) 6731947 ( 0.03%) 189.39
halflif 1 ( 0.00%) 101 ( 0.00%) 101.00
other 233 ( 0.00%) 40125 ( 0.00%) 172.21
icmp6 7200 ( 0.02%) 897812 ( 0.00%) 124.70
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 55 ( 0.00%) 47845 ( 0.00%) 869.91
tcpdump file: 201004152315.dump.gz (934.81 MB)