Traffic Trace Info
DumpFile: 201004160730.dump
FileSize: 1929.53MB
Id: 201004160730
StartTime: Fri Apr 16 07:30:01 2010
EndTime: Fri Apr 16 07:45:01 2010
TotalTime: 899.52 seconds
TotalCapSize: 1514.04MB CapLen: 96 bytes
# of packets: 27229131 (16984.48MB)
AvgRate: 158.40Mbps stddev:11.75M
IP flow (unique src/dst pair) Information
# of flows: 960117 (avg. 28.36 pkts/flow)
Top 10 big flow size (bytes/total in %):
3.0% 2.2% 2.0% 2.0% 1.9% 1.7% 1.2% 1.1% 1.1% 1.0%
IP address Information
# of IPv4 addresses: 533615
Top 10 bandwidth usage (bytes/total in %):
16.2% 14.5% 9.3% 4.0% 3.5% 3.3% 3.1% 3.0% 2.9% 2.7%
# of IPv6 addresses: 904
Top 10 bandwidth usage (bytes/total in %):
23.0% 17.0% 7.3% 6.8% 6.3% 5.7% 5.5% 5.0% 4.1% 4.1%
Packet Size Distribution (including MAC headers)
![[packet size distribution]](201004160730.pktlen.png)
detailed numbers
[ 32- 63]: 3523722
[ 64- 127]: 7658978
[ 128- 255]: 2687245
[ 256- 511]: 1886773
[ 512- 1023]: 767370
[ 1024- 2047]: 10705043
Protocol Breakdown
![[protocol breakdown chart]](201004160730.png)
protocol packets bytes bytes/pkt
------------------------------------------------------------------------
total 27229131 (100.00%) 17809516774 (100.00%) 654.06
ip 27171573 ( 99.79%) 17801424106 ( 99.95%) 655.15
tcp 14234201 ( 52.28%) 11196768877 ( 62.87%) 786.61
http(s) 5812546 ( 21.35%) 8056938253 ( 45.24%) 1386.13
http(c) 3168136 ( 11.64%) 349772166 ( 1.96%) 110.40
squid 279583 ( 1.03%) 67063945 ( 0.38%) 239.87
smtp 339205 ( 1.25%) 89874751 ( 0.50%) 264.96
nntp 2 ( 0.00%) 124 ( 0.00%) 62.00
ftp 10718 ( 0.04%) 1190906 ( 0.01%) 111.11
pop3 10164 ( 0.04%) 6178560 ( 0.03%) 607.89
imap 2264 ( 0.01%) 1179735 ( 0.01%) 521.08
telnet 303 ( 0.00%) 53992 ( 0.00%) 178.19
ssh 698259 ( 2.56%) 100539888 ( 0.56%) 143.99
dns 54464 ( 0.20%) 3753763 ( 0.02%) 68.92
bgp 167 ( 0.00%) 64056 ( 0.00%) 383.57
napster 8 ( 0.00%) 544 ( 0.00%) 68.00
rtsp 126 ( 0.00%) 28827 ( 0.00%) 228.79
icecast 816 ( 0.00%) 614138 ( 0.00%) 752.62
hotline 6 ( 0.00%) 366 ( 0.00%) 61.00
other 3856472 ( 14.16%) 2519457143 ( 14.15%) 653.31
udp 7715144 ( 28.33%) 3814811427 ( 21.42%) 494.46
dns 615869 ( 2.26%) 111398307 ( 0.63%) 180.88
realaud 22 ( 0.00%) 2883 ( 0.00%) 131.05
halflif 86 ( 0.00%) 8043 ( 0.00%) 93.52
starcra 255 ( 0.00%) 31654 ( 0.00%) 124.13
everque 465 ( 0.00%) 88056 ( 0.00%) 189.37
unreal 35 ( 0.00%) 5394 ( 0.00%) 154.11
quake 27 ( 0.00%) 3363 ( 0.00%) 124.56
cuseeme 4 ( 0.00%) 403 ( 0.00%) 100.75
other 7098043 ( 26.07%) 3703083189 ( 20.79%) 521.70
icmp 894643 ( 3.29%) 159604779 ( 0.90%) 178.40
ipip 344 ( 0.00%) 39688 ( 0.00%) 115.37
ipsec 10346 ( 0.04%) 5077938 ( 0.03%) 490.81
ip6 4007378 ( 14.72%) 2593184682 ( 14.56%) 647.10
other 309517 ( 1.14%) 31936715 ( 0.18%) 103.18
frag 3845 ( 0.01%) 3461394 ( 0.02%) 900.23
ip6 57558 ( 0.21%) 8092668 ( 0.05%) 140.60
tcp6 28519 ( 0.10%) 3032947 ( 0.02%) 106.35
http(s) 28 ( 0.00%) 15907 ( 0.00%) 568.11
http(c) 5642 ( 0.02%) 532658 ( 0.00%) 94.41
smtp 284 ( 0.00%) 108212 ( 0.00%) 381.03
ftp 7334 ( 0.03%) 731122 ( 0.00%) 99.69
imap 350 ( 0.00%) 41317 ( 0.00%) 118.05
ssh 5060 ( 0.02%) 599516 ( 0.00%) 118.48
dns 78 ( 0.00%) 21547 ( 0.00%) 276.24
bgp 114 ( 0.00%) 14983 ( 0.00%) 131.43
other 9629 ( 0.04%) 967685 ( 0.01%) 100.50
udp6 22964 ( 0.08%) 4286253 ( 0.02%) 186.65
dns 22846 ( 0.08%) 4268121 ( 0.02%) 186.82
other 118 ( 0.00%) 18132 ( 0.00%) 153.66
icmp6 5992 ( 0.02%) 721128 ( 0.00%) 120.35
pim6 30 ( 0.00%) 4080 ( 0.00%) 136.00
other6 53 ( 0.00%) 48260 ( 0.00%) 910.57
tcpdump file: 201004160730.dump.gz (674.51 MB)