Traffic Trace Info
DumpFile: 201004160645.dump
FileSize: 1833.16MB
Id: 201004160645
StartTime: Fri Apr 16 06:45:00 2010
EndTime: Fri Apr 16 07:00:00 2010
TotalTime: 900.25 seconds
TotalCapSize: 1438.71MB CapLen: 96 bytes
# of packets: 25850060 (15898.82MB)
AvgRate: 148.13Mbps stddev:10.81M
IP flow (unique src/dst pair) Information
# of flows: 984295 (avg. 26.26 pkts/flow)
Top 10 big flow size (bytes/total in %):
4.7% 1.9% 1.7% 1.5% 1.3% 1.3% 1.1% 0.9% 0.9% 0.8%
IP address Information
# of IPv4 addresses: 532379
Top 10 bandwidth usage (bytes/total in %):
19.6% 14.5% 5.0% 4.9% 4.8% 4.4% 4.1% 3.7% 3.4% 2.4%
# of IPv6 addresses: 881
Top 10 bandwidth usage (bytes/total in %):
26.9% 8.5% 7.8% 7.7% 6.7% 4.8% 4.8% 4.7% 4.6% 3.3%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004160645.pktlen.png)
detailed numbers
[ 32- 63]: 3462034
[ 64- 127]: 6988539
[ 128- 255]: 2657642
[ 256- 511]: 1969405
[ 512- 1023]: 782629
[ 1024- 2047]: 9989811
Protocol Breakdown
![[protocol breakdown chart]](201004160645.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 25850060 (100.00%) 16671124394 (100.00%) 644.92
ip 25802826 ( 99.82%) 16664161497 ( 99.96%) 645.83
tcp 13302504 ( 51.46%) 10251197216 ( 61.49%) 770.62
http(s) 5603578 ( 21.68%) 7735453484 ( 46.40%) 1380.45
http(c) 2706062 ( 10.47%) 308157005 ( 1.85%) 113.88
squid 336708 ( 1.30%) 106805515 ( 0.64%) 317.21
smtp 348318 ( 1.35%) 63493488 ( 0.38%) 182.29
ftp 6600 ( 0.03%) 686164 ( 0.00%) 103.96
pop3 10925 ( 0.04%) 8918561 ( 0.05%) 816.34
imap 952 ( 0.00%) 103654 ( 0.00%) 108.88
telnet 2757 ( 0.01%) 237997 ( 0.00%) 86.32
ssh 845636 ( 3.27%) 122019572 ( 0.73%) 144.29
dns 53512 ( 0.21%) 3704803 ( 0.02%) 69.23
bgp 139 ( 0.00%) 44549 ( 0.00%) 320.50
napster 3 ( 0.00%) 186 ( 0.00%) 62.00
realaud 11 ( 0.00%) 1233 ( 0.00%) 112.09
rtsp 6896 ( 0.03%) 4308255 ( 0.03%) 624.75
icecast 359 ( 0.00%) 35225 ( 0.00%) 98.12
hotline 10 ( 0.00%) 692 ( 0.00%) 69.20
other 3380010 ( 13.08%) 1897225153 ( 11.38%) 561.31
udp 7537976 ( 29.16%) 3798230777 ( 22.78%) 503.88
dns 615440 ( 2.38%) 109465947 ( 0.66%) 177.87
realaud 40 ( 0.00%) 4078 ( 0.00%) 101.95
halflif 57 ( 0.00%) 6240 ( 0.00%) 109.47
starcra 258 ( 0.00%) 33865 ( 0.00%) 131.26
everque 480 ( 0.00%) 90096 ( 0.00%) 187.70
unreal 86 ( 0.00%) 11507 ( 0.00%) 133.80
quake 26 ( 0.00%) 3125 ( 0.00%) 120.19
cuseeme 4 ( 0.00%) 424 ( 0.00%) 106.00
other 6921275 ( 26.77%) 3688478094 ( 22.12%) 532.92
icmp 960888 ( 3.72%) 168775968 ( 1.01%) 175.65
ipip 351 ( 0.00%) 41311 ( 0.00%) 117.70
ipsec 47285 ( 0.18%) 27430042 ( 0.16%) 580.10
ip6 3946162 ( 15.27%) 2417478006 ( 14.50%) 612.61
other 7660 ( 0.03%) 1008177 ( 0.01%) 131.62
frag 1501 ( 0.01%) 1482578 ( 0.01%) 987.73
ip6 47234 ( 0.18%) 6962897 ( 0.04%) 147.41
tcp6 18559 ( 0.07%) 2075156 ( 0.01%) 111.81
http(s) 28 ( 0.00%) 15908 ( 0.00%) 568.14
http(c) 5041 ( 0.02%) 448429 ( 0.00%) 88.96
smtp 344 ( 0.00%) 142376 ( 0.00%) 413.88
ftp 3084 ( 0.01%) 326945 ( 0.00%) 106.01
imap 318 ( 0.00%) 35301 ( 0.00%) 111.01
ssh 5058 ( 0.02%) 599992 ( 0.00%) 118.62
dns 85 ( 0.00%) 17882 ( 0.00%) 210.38
bgp 116 ( 0.00%) 15034 ( 0.00%) 129.60
other 4485 ( 0.02%) 473289 ( 0.00%) 105.53
udp6 22688 ( 0.09%) 4136422 ( 0.02%) 182.32
dns 22583 ( 0.09%) 4121467 ( 0.02%) 182.50
everque 1 ( 0.00%) 119 ( 0.00%) 119.00
other 104 ( 0.00%) 14836 ( 0.00%) 142.65
icmp6 5916 ( 0.02%) 709557 ( 0.00%) 119.94
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 41 ( 0.00%) 37682 ( 0.00%) 919.07
tcpdump file: 201004160645.dump.gz (655.64 MB)