Traffic Trace Info
DumpFile: 201004160330.dump
FileSize: 2149.72MB
Id: 201004160330
StartTime: Fri Apr 16 03:30:01 2010
EndTime: Fri Apr 16 03:45:01 2010
TotalTime: 900.23 seconds
TotalCapSize: 1687.19MB CapLen: 96 bytes
# of packets: 30311353 (19737.25MB)
AvgRate: 183.94Mbps stddev:16.14M
IP flow (unique src/dst pair) Information
# of flows: 1326926 (avg. 22.84 pkts/flow)
Top 10 big flow size (bytes/total in %):
5.4% 2.1% 1.4% 1.4% 1.4% 1.3% 1.2% 1.1% 1.1% 0.7%
IP address Information
# of IPv4 addresses: 757113
Top 10 bandwidth usage (bytes/total in %):
14.9% 8.5% 7.5% 6.9% 6.3% 5.7% 5.5% 5.4% 5.1% 4.6%
# of IPv6 addresses: 993
Top 10 bandwidth usage (bytes/total in %):
29.8% 7.6% 7.6% 6.7% 4.2% 4.2% 4.0% 3.4% 3.3% 3.0%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004160330.pktlen.png)
detailed numbers
[ 32- 63]: 4697306
[ 64- 127]: 8111087
[ 128- 255]: 2246643
[ 256- 511]: 1818784
[ 512- 1023]: 898793
[ 1024- 2047]: 12538740
Protocol Breakdown
![[protocol breakdown chart]](201004160330.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 30311353 (100.00%) 20696005407 (100.00%) 682.78
ip 30264610 ( 99.85%) 20688186601 ( 99.96%) 683.58
tcp 18792269 ( 62.00%) 15140708044 ( 73.16%) 805.69
http(s) 8523033 ( 28.12%) 11811052648 ( 57.07%) 1385.78
http(c) 4136073 ( 13.65%) 397506424 ( 1.92%) 96.11
squid 530517 ( 1.75%) 111208223 ( 0.54%) 209.62
smtp 332612 ( 1.10%) 53933897 ( 0.26%) 162.15
ftp 10124 ( 0.03%) 1055156 ( 0.01%) 104.22
pop3 7681 ( 0.03%) 5330348 ( 0.03%) 693.97
imap 657 ( 0.00%) 145499 ( 0.00%) 221.46
telnet 2160 ( 0.01%) 173494 ( 0.00%) 80.32
ssh 768137 ( 2.53%) 116849208 ( 0.56%) 152.12
dns 54690 ( 0.18%) 4660433 ( 0.02%) 85.22
bgp 155 ( 0.00%) 62798 ( 0.00%) 405.15
napster 8 ( 0.00%) 496 ( 0.00%) 62.00
realaud 11 ( 0.00%) 1237 ( 0.00%) 112.45
rtsp 32702 ( 0.11%) 36763068 ( 0.18%) 1124.18
icecast 579 ( 0.00%) 71281 ( 0.00%) 123.11
hotline 9 ( 0.00%) 582 ( 0.00%) 64.67
other 4392001 ( 14.49%) 2601826052 ( 12.57%) 592.40
udp 6934493 ( 22.88%) 3549844872 ( 17.15%) 511.91
dns 704975 ( 2.33%) 135336768 ( 0.65%) 191.97
rip 31 ( 0.00%) 2325 ( 0.00%) 75.00
realaud 13 ( 0.00%) 1710 ( 0.00%) 131.54
halflif 59 ( 0.00%) 4992 ( 0.00%) 84.61
starcra 301 ( 0.00%) 37544 ( 0.00%) 124.73
everque 546 ( 0.00%) 104901 ( 0.00%) 192.13
unreal 67 ( 0.00%) 9172 ( 0.00%) 136.90
quake 34 ( 0.00%) 3469 ( 0.00%) 102.03
cuseeme 6 ( 0.00%) 608 ( 0.00%) 101.33
other 6222805 ( 20.53%) 3413796409 ( 16.49%) 548.59
icmp 1521567 ( 5.02%) 227101465 ( 1.10%) 149.25
ipip 374 ( 0.00%) 44748 ( 0.00%) 119.65
ipsec 1296 ( 0.00%) 257036 ( 0.00%) 198.33
ip6 3001389 ( 9.90%) 1762714686 ( 8.52%) 587.30
other 13222 ( 0.04%) 7515750 ( 0.04%) 568.43
frag 25624 ( 0.08%) 24808669 ( 0.12%) 968.18
ip6 46743 ( 0.15%) 7818806 ( 0.04%) 167.27
tcp6 12956 ( 0.04%) 1785455 ( 0.01%) 137.81
http(s) 96 ( 0.00%) 68828 ( 0.00%) 716.96
http(c) 4720 ( 0.02%) 476851 ( 0.00%) 101.03
smtp 536 ( 0.00%) 302243 ( 0.00%) 563.89
ftp 3 ( 0.00%) 234 ( 0.00%) 78.00
imap 363 ( 0.00%) 42275 ( 0.00%) 116.46
ssh 5029 ( 0.02%) 595330 ( 0.00%) 118.38
dns 104 ( 0.00%) 23408 ( 0.00%) 225.08
bgp 123 ( 0.00%) 17215 ( 0.00%) 139.96
other 1982 ( 0.01%) 259071 ( 0.00%) 130.71
udp6 26684 ( 0.09%) 5149135 ( 0.02%) 192.97
dns 26524 ( 0.09%) 5122079 ( 0.02%) 193.11
other 160 ( 0.00%) 27056 ( 0.00%) 169.10
icmp6 7035 ( 0.02%) 848441 ( 0.00%) 120.60
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 38 ( 0.00%) 31695 ( 0.00%) 834.08
tcpdump file: 201004160330.dump.gz (769.26 MB)