Traffic Trace Info
DumpFile: 201004160000.dump
FileSize: 2474.61MB
Id: 201004160000
StartTime: Fri Apr 16 00:00:01 2010
EndTime: Fri Apr 16 00:15:01 2010
TotalTime: 899.63 seconds
TotalCapSize: 1932.09MB CapLen: 96 bytes
# of packets: 35554092 (23834.69MB)
AvgRate: 222.22Mbps stddev:17.13M
IP flow (unique src/dst pair) Information
# of flows: 1142760 (avg. 31.11 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.6% 3.3% 1.5% 1.3% 1.2% 1.0% 0.9% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 597719
Top 10 bandwidth usage (bytes/total in %):
11.1% 6.3% 6.1% 5.9% 5.5% 4.9% 4.8% 4.6% 3.7% 3.4%
# of IPv6 addresses: 1029
Top 10 bandwidth usage (bytes/total in %):
26.9% 10.9% 7.2% 6.6% 6.4% 4.6% 3.9% 3.5% 3.5% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004160000.pktlen.png)
detailed numbers
[ 32- 63]: 5755660
[ 64- 127]: 9322238
[ 128- 255]: 2597259
[ 256- 511]: 1695525
[ 512- 1023]: 754374
[ 1024- 2047]: 15429036
Protocol Breakdown
![[protocol breakdown chart]](201004160000.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 35554092 (100.00%) 24992481770 (100.00%) 702.94
ip 35499666 ( 99.85%) 24983168711 ( 99.96%) 703.76
tcp 22828167 ( 64.21%) 19226979046 ( 76.93%) 842.25
http(s) 10014632 ( 28.17%) 13871741052 ( 55.50%) 1385.15
http(c) 5613265 ( 15.79%) 538109645 ( 2.15%) 95.86
squid 345165 ( 0.97%) 143434662 ( 0.57%) 415.55
smtp 391238 ( 1.10%) 67711275 ( 0.27%) 173.07
nntp 12 ( 0.00%) 744 ( 0.00%) 62.00
ftp 9851 ( 0.03%) 986650 ( 0.00%) 100.16
pop3 10012 ( 0.03%) 7749580 ( 0.03%) 774.03
imap 2952 ( 0.01%) 2051419 ( 0.01%) 694.93
telnet 793 ( 0.00%) 86588 ( 0.00%) 109.19
ssh 850159 ( 2.39%) 152225975 ( 0.61%) 179.06
dns 53365 ( 0.15%) 3658487 ( 0.01%) 68.56
bgp 234 ( 0.00%) 118627 ( 0.00%) 506.95
napster 6 ( 0.00%) 710 ( 0.00%) 118.33
realaud 10 ( 0.00%) 1028 ( 0.00%) 102.80
rtsp 505 ( 0.00%) 140484 ( 0.00%) 278.19
icecast 2849 ( 0.01%) 1962891 ( 0.01%) 688.98
hotline 3 ( 0.00%) 186 ( 0.00%) 62.00
other 5533113 ( 15.56%) 4436998863 ( 17.75%) 801.90
udp 8426102 ( 23.70%) 3823685560 ( 15.30%) 453.79
dns 810433 ( 2.28%) 144772546 ( 0.58%) 178.64
realaud 71 ( 0.00%) 6246 ( 0.00%) 87.97
halflif 104 ( 0.00%) 9452 ( 0.00%) 90.88
starcra 236 ( 0.00%) 24095 ( 0.00%) 102.10
everque 951 ( 0.00%) 569488 ( 0.00%) 598.83
unreal 53 ( 0.00%) 6910 ( 0.00%) 130.38
quake 25 ( 0.00%) 2549 ( 0.00%) 101.96
cuseeme 81 ( 0.00%) 14261 ( 0.00%) 176.06
other 7613819 ( 21.41%) 3678022739 ( 14.72%) 483.07
icmp 985286 ( 2.77%) 168957514 ( 0.68%) 171.48
ipip 376 ( 0.00%) 46298 ( 0.00%) 123.13
ipsec 1658 ( 0.00%) 451956 ( 0.00%) 272.59
ip6 2815336 ( 7.92%) 1594830982 ( 6.38%) 566.48
other 442741 ( 1.25%) 168217355 ( 0.67%) 379.95
frag 2662 ( 0.01%) 2937101 ( 0.01%) 1103.34
ip6 54426 ( 0.15%) 9313059 ( 0.04%) 171.11
tcp6 13378 ( 0.04%) 1905416 ( 0.01%) 142.43
http(s) 142 ( 0.00%) 143303 ( 0.00%) 1009.18
http(c) 4549 ( 0.01%) 416965 ( 0.00%) 91.66
smtp 798 ( 0.00%) 400328 ( 0.00%) 501.66
imap 430 ( 0.00%) 48284 ( 0.00%) 112.29
ssh 5014 ( 0.01%) 593932 ( 0.00%) 118.45
dns 104 ( 0.00%) 43051 ( 0.00%) 413.95
bgp 120 ( 0.00%) 16384 ( 0.00%) 136.53
other 2221 ( 0.01%) 243169 ( 0.00%) 109.49
udp6 34076 ( 0.10%) 6475003 ( 0.03%) 190.02
dns 33654 ( 0.09%) 6411229 ( 0.03%) 190.50
other 422 ( 0.00%) 63774 ( 0.00%) 151.12
icmp6 6832 ( 0.02%) 833756 ( 0.00%) 122.04
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 110 ( 0.00%) 94804 ( 0.00%) 861.85
tcpdump file: 201004160000.dump.gz (906.38 MB)