Traffic Trace Info
DumpFile: 201004160215.dump
FileSize: 2052.85MB
Id: 201004160215
StartTime: Fri Apr 16 02:15:00 2010
EndTime: Fri Apr 16 02:30:00 2010
TotalTime: 899.88 seconds
TotalCapSize: 1605.85MB CapLen: 96 bytes
# of packets: 29294124 (18337.45MB)
AvgRate: 170.94Mbps stddev:13.75M
IP flow (unique src/dst pair) Information
# of flows: 1092066 (avg. 26.82 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.2% 3.0% 1.7% 1.0% 0.8% 0.7% 0.7% 0.7% 0.7% 0.6%
IP address Information
# of IPv4 addresses: 573908
Top 10 bandwidth usage (bytes/total in %):
13.2% 8.5% 6.7% 6.2% 6.0% 5.5% 4.4% 4.3% 3.3% 3.2%
# of IPv6 addresses: 982
Top 10 bandwidth usage (bytes/total in %):
31.0% 9.3% 7.3% 6.4% 5.3% 4.4% 4.4% 4.1% 4.1% 3.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004160215.pktlen.png)
detailed numbers
[ 32- 63]: 5225505
[ 64- 127]: 8254633
[ 128- 255]: 2003353
[ 256- 511]: 1505899
[ 512- 1023]: 659600
[ 1024- 2047]: 11645134
Protocol Breakdown
![[protocol breakdown chart]](201004160215.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 29294124 (100.00%) 19228210537 (100.00%) 656.38
ip 29245678 ( 99.83%) 19220128441 ( 99.96%) 657.20
tcp 18936248 ( 64.64%) 14771513535 ( 76.82%) 780.07
http(s) 8806980 ( 30.06%) 12380886971 ( 64.39%) 1405.80
http(c) 5204582 ( 17.77%) 482991852 ( 2.51%) 92.80
squid 312013 ( 1.07%) 106792533 ( 0.56%) 342.27
smtp 321269 ( 1.10%) 60786120 ( 0.32%) 189.21
ftp 15279 ( 0.05%) 1724701 ( 0.01%) 112.88
pop3 10333 ( 0.04%) 9137117 ( 0.05%) 884.27
imap 2013 ( 0.01%) 882588 ( 0.00%) 438.44
telnet 1316 ( 0.00%) 106321 ( 0.00%) 80.79
ssh 865212 ( 2.95%) 137634321 ( 0.72%) 159.08
dns 54651 ( 0.19%) 3751615 ( 0.02%) 68.65
bgp 147 ( 0.00%) 53384 ( 0.00%) 363.16
napster 20 ( 0.00%) 1822 ( 0.00%) 91.10
realaud 3 ( 0.00%) 186 ( 0.00%) 62.00
rtsp 30906 ( 0.11%) 35006489 ( 0.18%) 1132.68
icecast 625 ( 0.00%) 74823 ( 0.00%) 119.72
hotline 23 ( 0.00%) 1546 ( 0.00%) 67.22
other 3310876 ( 11.30%) 1551681146 ( 8.07%) 468.66
udp 6773013 ( 23.12%) 3047663455 ( 15.85%) 449.97
dns 715077 ( 2.44%) 128400434 ( 0.67%) 179.56
rip 1 ( 0.00%) 109 ( 0.00%) 109.00
realaud 20 ( 0.00%) 1752 ( 0.00%) 87.60
halflif 81 ( 0.00%) 6833 ( 0.00%) 84.36
starcra 228 ( 0.00%) 23406 ( 0.00%) 102.66
everque 734 ( 0.00%) 149555 ( 0.00%) 203.75
unreal 56 ( 0.00%) 7382 ( 0.00%) 131.82
quake 27 ( 0.00%) 3631 ( 0.00%) 134.48
cuseeme 4 ( 0.00%) 390 ( 0.00%) 97.50
other 6056543 ( 20.67%) 2918921938 ( 15.18%) 481.95
icmp 987000 ( 3.37%) 157053777 ( 0.82%) 159.12
ipip 338 ( 0.00%) 42872 ( 0.00%) 126.84
ipsec 5940 ( 0.02%) 2497668 ( 0.01%) 420.48
ip6 2225472 ( 7.60%) 1167629413 ( 6.07%) 524.67
other 317667 ( 1.08%) 73727721 ( 0.38%) 232.09
frag 1869 ( 0.01%) 1964843 ( 0.01%) 1051.28
ip6 48444 ( 0.17%) 8081976 ( 0.04%) 166.83
tcp6 12184 ( 0.04%) 1427395 ( 0.01%) 117.15
http(s) 36 ( 0.00%) 18591 ( 0.00%) 516.42
http(c) 4697 ( 0.02%) 423087 ( 0.00%) 90.08
smtp 356 ( 0.00%) 151990 ( 0.00%) 426.94
imap 243 ( 0.00%) 27993 ( 0.00%) 115.20
ssh 5067 ( 0.02%) 600730 ( 0.00%) 118.56
dns 101 ( 0.00%) 24484 ( 0.00%) 242.42
bgp 129 ( 0.00%) 18693 ( 0.00%) 144.91
other 1555 ( 0.01%) 161827 ( 0.00%) 104.07
udp6 29118 ( 0.10%) 5753054 ( 0.03%) 197.58
dns 28912 ( 0.10%) 5714396 ( 0.03%) 197.65
other 206 ( 0.00%) 38658 ( 0.00%) 187.66
icmp6 7052 ( 0.02%) 849824 ( 0.00%) 120.51
pim6 31 ( 0.00%) 4216 ( 0.00%) 136.00
other6 59 ( 0.00%) 47487 ( 0.00%) 804.86
tcpdump file: 201004160215.dump.gz (753.71 MB)