Traffic Trace Info
DumpFile: 201004160030.dump
FileSize: 2355.27MB
Id: 201004160030
StartTime: Fri Apr 16 00:30:00 2010
EndTime: Fri Apr 16 00:45:01 2010
TotalTime: 900.47 seconds
TotalCapSize: 1837.27MB CapLen: 96 bytes
# of packets: 33947169 (22009.50MB)
AvgRate: 205.01Mbps stddev:23.37M
IP flow (unique src/dst pair) Information
# of flows: 1112207 (avg. 30.52 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.6% 3.6% 2.5% 1.9% 1.4% 1.1% 1.0% 0.8% 0.8% 0.7%
IP address Information
# of IPv4 addresses: 615404
Top 10 bandwidth usage (bytes/total in %):
12.3% 6.7% 6.2% 6.1% 4.7% 4.7% 4.0% 4.0% 4.0% 3.7%
# of IPv6 addresses: 995
Top 10 bandwidth usage (bytes/total in %):
25.9% 11.7% 8.7% 7.3% 6.2% 5.5% 3.8% 3.4% 3.4% 3.2%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004160030.pktlen.png)
detailed numbers
[ 32- 63]: 5247179
[ 64- 127]: 9472038
[ 128- 255]: 2656428
[ 256- 511]: 1682988
[ 512- 1023]: 720430
[ 1024- 2047]: 14168106
Protocol Breakdown
![[protocol breakdown chart]](201004160030.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 33947169 (100.00%) 23078629004 (100.00%) 679.84
ip 33891990 ( 99.84%) 23068992138 ( 99.96%) 680.66
tcp 20942423 ( 61.69%) 17365002079 ( 75.24%) 829.18
http(s) 10193882 ( 30.03%) 14168750543 ( 61.39%) 1389.93
http(c) 5505769 ( 16.22%) 526358533 ( 2.28%) 95.60
squid 310331 ( 0.91%) 109081426 ( 0.47%) 351.50
smtp 381747 ( 1.12%) 75286633 ( 0.33%) 197.22
nntp 6 ( 0.00%) 366 ( 0.00%) 61.00
ftp 8018 ( 0.02%) 845438 ( 0.00%) 105.44
pop3 18196 ( 0.05%) 17610383 ( 0.08%) 967.82
imap 2335 ( 0.01%) 1641401 ( 0.01%) 702.96
telnet 3967 ( 0.01%) 2635628 ( 0.01%) 664.39
ssh 894712 ( 2.64%) 107855752 ( 0.47%) 120.55
dns 53240 ( 0.16%) 3715158 ( 0.02%) 69.78
bgp 144 ( 0.00%) 56249 ( 0.00%) 390.62
napster 358 ( 0.00%) 31343 ( 0.00%) 87.55
realaud 15 ( 0.00%) 1022 ( 0.00%) 68.13
rtsp 664 ( 0.00%) 193829 ( 0.00%) 291.91
icecast 3810 ( 0.01%) 2926360 ( 0.01%) 768.07
hotline 13 ( 0.00%) 1203 ( 0.00%) 92.54
other 3565211 ( 10.50%) 2348010512 ( 10.17%) 658.59
udp 8967626 ( 26.42%) 3951126691 ( 17.12%) 440.60
dns 752235 ( 2.22%) 134743951 ( 0.58%) 179.12
realaud 55 ( 0.00%) 5395 ( 0.00%) 98.09
halflif 101 ( 0.00%) 10166 ( 0.00%) 100.65
starcra 221 ( 0.00%) 25002 ( 0.00%) 113.13
everque 467 ( 0.00%) 83092 ( 0.00%) 177.93
unreal 88 ( 0.00%) 10601 ( 0.00%) 120.47
quake 44 ( 0.00%) 3607 ( 0.00%) 81.98
cuseeme 91 ( 0.00%) 14598 ( 0.00%) 160.42
other 8213957 ( 24.20%) 3815948186 ( 16.53%) 464.57
icmp 977647 ( 2.88%) 166545626 ( 0.72%) 170.35
ipip 374 ( 0.00%) 47052 ( 0.00%) 125.81
ipsec 1741 ( 0.01%) 391046 ( 0.00%) 224.61
ip6 2612458 ( 7.70%) 1441562699 ( 6.25%) 551.80
other 389721 ( 1.15%) 144316945 ( 0.63%) 370.31
frag 3476 ( 0.01%) 3993558 ( 0.02%) 1148.89
ip6 55179 ( 0.16%) 9636866 ( 0.04%) 174.65
tcp6 17464 ( 0.05%) 2885408 ( 0.01%) 165.22
http(s) 37 ( 0.00%) 17717 ( 0.00%) 478.84
http(c) 8451 ( 0.02%) 755562 ( 0.00%) 89.41
smtp 609 ( 0.00%) 335717 ( 0.00%) 551.26
imap 348 ( 0.00%) 41076 ( 0.00%) 118.03
ssh 5027 ( 0.01%) 594846 ( 0.00%) 118.33
dns 88 ( 0.00%) 36514 ( 0.00%) 414.93
bgp 105 ( 0.00%) 13684 ( 0.00%) 130.32
other 2799 ( 0.01%) 1090292 ( 0.00%) 389.53
udp6 30584 ( 0.09%) 5835234 ( 0.03%) 190.79
dns 30320 ( 0.09%) 5792266 ( 0.03%) 191.04
other 264 ( 0.00%) 42968 ( 0.00%) 162.76
icmp6 7046 ( 0.02%) 859106 ( 0.00%) 121.93
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 55 ( 0.00%) 53038 ( 0.00%) 964.33
tcpdump file: 201004160030.dump.gz (860.45 MB)