Traffic Trace Info
DumpFile: 201004160415.dump
FileSize: 2018.51MB
Id: 201004160415
StartTime: Fri Apr 16 04:15:01 2010
EndTime: Fri Apr 16 04:30:00 2010
TotalTime: 899.72 seconds
TotalCapSize: 1580.75MB CapLen: 96 bytes
# of packets: 28688419 (18114.82MB)
AvgRate: 168.89Mbps stddev:15.56M
IP flow (unique src/dst pair) Information
# of flows: 1146931 (avg. 25.01 pkts/flow)
Top 10 big flow size (bytes/total in %):
2.1% 1.7% 1.4% 1.2% 1.0% 0.9% 0.9% 0.7% 0.7% 0.7%
IP address Information
# of IPv4 addresses: 620788
Top 10 bandwidth usage (bytes/total in %):
16.9% 9.6% 8.8% 7.1% 4.9% 4.9% 4.7% 4.4% 3.6% 2.9%
# of IPv6 addresses: 935
Top 10 bandwidth usage (bytes/total in %):
24.2% 13.7% 7.6% 7.3% 6.9% 5.7% 5.0% 4.2% 4.2% 3.5%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004160415.pktlen.png)
detailed numbers
[ 32- 63]: 4375425
[ 64- 127]: 7605504
[ 128- 255]: 2664268
[ 256- 511]: 1776955
[ 512- 1023]: 796696
[ 1024- 2047]: 11469571
Protocol Breakdown
![[protocol breakdown chart]](201004160415.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 28688419 (100.00%) 18994763150 (100.00%) 662.11
ip 28641757 ( 99.84%) 18986999007 ( 99.96%) 662.91
tcp 16951124 ( 59.09%) 13113753694 ( 69.04%) 773.62
http(s) 6786362 ( 23.66%) 9387011723 ( 49.42%) 1383.22
http(c) 3736682 ( 13.03%) 370921324 ( 1.95%) 99.26
squid 301227 ( 1.05%) 79659841 ( 0.42%) 264.45
smtp 416146 ( 1.45%) 84236810 ( 0.44%) 202.42
ftp 10262 ( 0.04%) 1057100 ( 0.01%) 103.01
pop3 7470 ( 0.03%) 6050159 ( 0.03%) 809.93
imap 1056 ( 0.00%) 639672 ( 0.00%) 605.75
telnet 2119 ( 0.01%) 166430 ( 0.00%) 78.54
ssh 854683 ( 2.98%) 126258788 ( 0.66%) 147.73
dns 52965 ( 0.18%) 3675953 ( 0.02%) 69.40
bgp 195 ( 0.00%) 90157 ( 0.00%) 462.34
napster 72 ( 0.00%) 4691 ( 0.00%) 65.15
realaud 39 ( 0.00%) 2622 ( 0.00%) 67.23
rtsp 157 ( 0.00%) 47574 ( 0.00%) 303.02
icecast 544 ( 0.00%) 57176 ( 0.00%) 105.10
hotline 6 ( 0.00%) 372 ( 0.00%) 62.00
other 4781113 ( 16.67%) 3053871742 ( 16.08%) 638.74
udp 7425706 ( 25.88%) 3808094896 ( 20.05%) 512.83
dns 892753 ( 3.11%) 280917964 ( 1.48%) 314.66
rip 17 ( 0.00%) 1275 ( 0.00%) 75.00
realaud 58 ( 0.00%) 7663 ( 0.00%) 132.12
halflif 68 ( 0.00%) 6425 ( 0.00%) 94.49
starcra 238 ( 0.00%) 27821 ( 0.00%) 116.89
everque 519 ( 0.00%) 95707 ( 0.00%) 184.41
unreal 55 ( 0.00%) 7594 ( 0.00%) 138.07
quake 42 ( 0.00%) 5008 ( 0.00%) 119.24
cuseeme 5 ( 0.00%) 507 ( 0.00%) 101.40
other 6527249 ( 22.75%) 3526494273 ( 18.57%) 540.27
icmp 1151196 ( 4.01%) 193940589 ( 1.02%) 168.47
ipip 326 ( 0.00%) 39972 ( 0.00%) 122.61
ipsec 3547 ( 0.01%) 1508374 ( 0.01%) 425.25
ip6 3077192 ( 10.73%) 1836144979 ( 9.67%) 596.69
other 32666 ( 0.11%) 33516503 ( 0.18%) 1026.04
frag 121240 ( 0.42%) 145386567 ( 0.77%) 1199.16
ip6 46662 ( 0.16%) 7764143 ( 0.04%) 166.39
tcp6 12277 ( 0.04%) 1520176 ( 0.01%) 123.82
http(s) 41 ( 0.00%) 25295 ( 0.00%) 616.95
http(c) 4625 ( 0.02%) 410302 ( 0.00%) 88.71
smtp 556 ( 0.00%) 240043 ( 0.00%) 431.73
imap 243 ( 0.00%) 28062 ( 0.00%) 115.48
ssh 5022 ( 0.02%) 595052 ( 0.00%) 118.49
dns 89 ( 0.00%) 30520 ( 0.00%) 342.92
bgp 105 ( 0.00%) 13402 ( 0.00%) 127.64
other 1596 ( 0.01%) 177500 ( 0.00%) 111.22
udp6 27494 ( 0.10%) 5349835 ( 0.03%) 194.58
dns 27233 ( 0.09%) 5304670 ( 0.03%) 194.79
other 261 ( 0.00%) 45165 ( 0.00%) 173.05
icmp6 6780 ( 0.02%) 819296 ( 0.00%) 120.84
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 81 ( 0.00%) 70756 ( 0.00%) 873.53
tcpdump file: 201004160415.dump.gz (732.37 MB)